Web Security News, Articles and Updates
The Internal Revenue Service (IRS) has beefed up the authentication requirements on its website to better protect taxpayers and loan applicants.
Three weeks after hijacking Facebook CEO Mark Zuckerberg's Twitter and Pinterest accounts, the mischievous OurMine hacking group appears to have briefly seized control of Google CEO Sundar Pichai's Quora account.
Unidentified individuals hacked into the loyalty program of at least 20 accounts at Air India to steal nearly $24,000 worth of frequent flier miles.
Patches have been made available for programming errors found in libarchive that could make software used in a number of platforms vulnerable to exploitation.
WordPress has released version 4.5.3 of its content management system, fixing eight security vulnerabilities that surfaced in previous versions, as well as 17 other bugs.
The continuing need for the now out of stock IPv4 addresses has helped create a black market for these, according to the American Registry for Internet Numbers (ARIN).
Unfortunately, the GoToMYPC service has been targeted by a 'very sophisticated password attack', says GoToMYPC
Every version of the Microsoft Windows operating system is at risk from a number of security weaknesses detected by a Chinese researcher.
Apple is making it mandatory for its App Store developers to use HTTPS when connecting to the company's servers.
Developers behind the Nemucod downloader are working diligently to avoid detection.
The outdoor and motorsports-centric website aggregator VerticalScope was hacked according to an industry watchdog with about 45 million records from more than 1,100 websites being taken and posted to the internet.
Presumptive Democratic presidential nominee Hillary Clinton told a crowd in Cleveland that she would push tech companies to cooperate with government requests for help in tracking and identifying terrorists and foiling their plots.
At one time ridiculed over lax cybersecurity, the federal health insurance exchange site HealthCare.gov scored second-highest out of approximately 1,000 websites in the Online Trust Alliance's eighth annual Trust Audit and Honor Roll.
A database of user accounts of the once popular video and music-sharing site iMesh has been made available on the dark web.
A journalist convicted of hacking is facing a fine of $250K to pay back the employer he violated
In its latest Firefox browser release, Mozilla this week fixed two critical vulnerabilities - a buffer overflow hazard and a set of memory safety hazards - plus 11 other security holes ranging from low to high in severity.
The IRS has pumped up its web security by adding multifactor authentication to thwart cyberthieves eager for the trove of taxpayer information held in its databases.
After Check Point notified Facebook of a flaw in its Facebook Online Chat & Messenger App earlier this month, the social media giant responded and quickly fixed the vulnerability.
'Cruel' lesson: GhostShell hacking group leaks 36M records as punishment for using databases on public serversJune 06, 2016
Calling its actions a "cruel reminder of what happens when you don't use proper security hygiene," the hacker group GhostShell doxxed approximately 36 million online accounts from various databases found on public servers that don't require credentials to access.
For the first time, Yahoo unveiled the details of three National Security Letters (NSLs) it received from the FBI that demanded a laundry list of user personal information.
Bloggers using the WordPress platform are being advised to update the JetPack plug-in to avoid a cross-site scripting (XSS) vulnerability.
The MIAX Options Exchange needed more than a way to appease regulators, it also required security assurance. Greg Masters reports.
A new study has come to light in which 52 percent of surveyed consumers said they would prefer a more modernized method of user authentication, such as biometrics, over traditional username and password mechanisms.
A hacker just went after the biggest target on all of Twitter, breaking into the account of singer-songwriter Katy Perry, whose 89 million followers make her the most popular presence on the entire social media platform.
Google Chrome 51 for Windows and Mac contained 42 security fixes, including 23 from outside researchers resulting in a more than $65,000 pay out in bug bounties.
Backdoors normally implement remote control tool TeamViewer in order to get unauthorised access to an infected computer. However, a newly-discovered Trojan, BackDoor.TeamViewer.49, uses the tool for less obvious reasons.
Just because a company offers a cybersecurity training program to its employees doesn't mean it's necessarily doing enough to change workers' dangerous online behaviors, according to a report from Experian and Ponemon Institute.
A criminal enterprise well known for using malware-laced fake display ads is ramping up efforts by infecting dozens of popular websites using a recently patched Flash Player exploit to deliver the Angler EK in a drive-by style attack.
Deejay and house music producer deadmau5 had to face the music when the mischievous hacking group Our Mine accessed his personal SoundCloud account and uploaded outside content.
The US-CERT issued an alert this week, warning of a "domain name collision" bug, causing certain DNS queries to be resolved on public instead of private or enterprise servers, exposing organizations to Man-in-the-Middle attacks.
SC Magazine Articles
- Brexit shakeup: How will the U.K.'s exit from the EU affect the technology sector?
- Blasphemy! Godless malware preys on nearly 90 percent of Android devices
- 'Password attacks' continue; Citrix becomes latest victim
- Dangerous connections: Risky LinkedIn behavior runs rampant, finds survey
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- CEO sacked after aircraft company grounded by whaling attack
- Wendy's POS breach 'considerably' bigger than first thought
- Microsoft warns of new, self-propagating ransomware in the wild
- No hacking required: Israeli researchers show how to steal data through PC components
- IRS implements new authentication safeguards
- Darktrace boss says we are living in a "golden age of criminality"
- UK Cyber-security after Brexit: May not be as bad as it first appears
- Industry, privacy groups: EU and U.S. Privacy Shield changes unlikely to ease concerns
- District court judge: FBI's hacking trick does not require warrant