Attackers have started using the Citadel Trojan program to steal master passwords for password management applications and other authentication programs.
"Where's Andrea?" That was the question on the lips of attendees at this week's No Such Con security conference.
A cyberespionage group has been using advanced spear-phishing techniques to steal email log-in credentials from the employees of military agencies, embassies, defense contractors and international media outlets that use Office 365's Outlook Web App.
Facebook and Yahoo have developed a mechanism to prevent the owners of recycled email addresses from hijacking accounts that were registered on other sites using those addresses in the past.
Many companies set up subdomains for use with external services, but then forget to disable them when they stop using those services, creating a loophole for attackers to exploit.
Google is letting users protect their accounts against password compromises by adding support for two-factor authentication based on physical USB keys.
Hackers claim to have stolen a database of almost 7 million Dropbox log-in credentials, but the company says its service was not hacked and that unrelated websites are the data source.
Many security experts feel that passwords are no longer sufficient to keep online accounts safe from hackers, but we're still a long way from widespread adoption of biometrics and alternative methods of authentication.
Hackers could have had an inside track on unpatched flaws in major software projects because of a critical vulnerability in Bugzilla, a system that many developers use to track and discuss bugs in their code.
Virtual private network servers based on OpenVPN might be vulnerable to remote code execution attacks through Shellshock and other recent flaws that affect the Bash Unix shell.
Apple's iOS 8 addresses a serious weakness that could allow attackers to hijack the wireless network authentication of Apple devices and gain access to enterprise networks.
Salesforce.com users are being targeted by a new version of a computer Trojan that has typically attacked online banking customers until now.
The hackers behind the Kelihos botnet are trying to capitalize on users' increased awareness about the security of Apple online accounts through a new phishing campaign.
Professional networking site LinkedIn is rolling out new features that allow users to easily manage authenticated sessions across multiple devices and better understand what caused security-related changes on their accounts.
Future versions of the Firefox OS mobile platform will allow users to control application-specific permissions, a feature with both privacy and security benefits that's missing on Android.
Most Popular Reviews
- 1 Sony Xperia Z5 Premium review: Is the world ready for a 4K phone?
- 2 D-Link Taipan AC3200 Ultra tri-band modem-router review
- 3 Dell XPS 13 (2016) review: Making the very best Ultrabook
- 4 Microsoft Surface Book review: The verdict on Microsoft's first notebook
- 5 Telstra Wi-Fi 4GX Advanced III review: Testing the world's first 600Mbps wireless hotspot
Join the PC World newsletter!
Best Deals on PC World
Latest News Articles
- Shared malware code links SWIFT-related breaches at banks and North Korean hackers
- Senate proposal to require encryption workarounds may be dead
- Acer's Windows 10 Switch hybrids priced to battle Chromebooks
- Seagate 8TB NAS drive: Review
GGG Evaluation Team
First impression on unpacking the Q702 test unit was the solid feel and clean, minimalist styling.
- CCTechnical System Engineer (Linux/Mobile/SQL)160524/TSE/vmtAsia
- CCSenior Business Analyst - Integration Solution ManagementVIC
- CCRelease Manager, SAPNSW
- CCProject Manager NetworksNSW
- CCSenior Change AnalystNSW
- FTWeb DeveloperSA
- CCContract Analyst Programmer (J2EE/Oracle) 160520/AP/985Asia
- FTRelease Planning LeadVIC
- CCProject ManagerACT
- CCChange manager/Change LeadNSW
- FTApplication Support EngineerVIC
- CCMS Dynamics CRM ConsultantVIC
- CCSystems Analyst (HTML/JAVA/Wireless & Mobile) 160525/SA/443Asia
- FTTester/Business AnalystWA
- CCChange Manager- ProcurementNSW
- FTNetwork EngineerNSW
- FTSenior Business AnalystVIC
- FTFront End DeveloperACT
- CCDigital Content ProducerVIC
- CCSenior Program DirectorNSW
- FTOPEN_ASAP_Network Security AdministratorACT
- CCInfrastructure and Cloud Project ManagerVIC
- FTSenior Systems EngineerACT
- CCDevOps EngineerNSW
- FTSenior Programmer (Data Engineering)NSW