Attackers have started using the Citadel Trojan program to steal master passwords for password management applications and other authentication programs.
"Where's Andrea?" That was the question on the lips of attendees at this week's No Such Con security conference.
A cyberespionage group has been using advanced spear-phishing techniques to steal email log-in credentials from the employees of military agencies, embassies, defense contractors and international media outlets that use Office 365's Outlook Web App.
Facebook and Yahoo have developed a mechanism to prevent the owners of recycled email addresses from hijacking accounts that were registered on other sites using those addresses in the past.
Many companies set up subdomains for use with external services, but then forget to disable them when they stop using those services, creating a loophole for attackers to exploit.
Google is letting users protect their accounts against password compromises by adding support for two-factor authentication based on physical USB keys.
Hackers claim to have stolen a database of almost 7 million Dropbox log-in credentials, but the company says its service was not hacked and that unrelated websites are the data source.
Many security experts feel that passwords are no longer sufficient to keep online accounts safe from hackers, but we're still a long way from widespread adoption of biometrics and alternative methods of authentication.
Hackers could have had an inside track on unpatched flaws in major software projects because of a critical vulnerability in Bugzilla, a system that many developers use to track and discuss bugs in their code.
Virtual private network servers based on OpenVPN might be vulnerable to remote code execution attacks through Shellshock and other recent flaws that affect the Bash Unix shell.
Apple's iOS 8 addresses a serious weakness that could allow attackers to hijack the wireless network authentication of Apple devices and gain access to enterprise networks.
Salesforce.com users are being targeted by a new version of a computer Trojan that has typically attacked online banking customers until now.
The hackers behind the Kelihos botnet are trying to capitalize on users' increased awareness about the security of Apple online accounts through a new phishing campaign.
Professional networking site LinkedIn is rolling out new features that allow users to easily manage authenticated sessions across multiple devices and better understand what caused security-related changes on their accounts.
Future versions of the Firefox OS mobile platform will allow users to control application-specific permissions, a feature with both privacy and security benefits that's missing on Android.
Most Popular Reviews
- 1 Witness a 241% Australian price hike: Dell Latitude 7370 review
- 2 Is this the best value phone on the market? Moto G4 Plus review
- 3 Sony Xperia X Performance review: Sony’s most disappointing product in years
- 4 Huawei P9 review: lifting photography to another level... sometimes.
- 5 Huawei Mate 8 review: probably the best all-round Android phone you can buy
Join the PC World newsletter!
Best Deals on PC World
Latest News Articles
- Smartphone market inches back to growth with Samsung holding lead
- Microsoft makes Windows 10 hardware change for PC security
- Apple has sold 1 billion iPhones
- Flaw with password manager LastPass could hand over control to hackers
- Pokémon Go craze shows Apple an augmented reality future
GGG Evaluation Team
First impression on unpacking the Q702 test unit was the solid feel and clean, minimalist styling.
- FTSocial Media AssistantQLD
- CCSAP BODS ConsultantNSW
- FTSystems Administrator, Linux, Networking, AWSNSW
- CCSenior Test AnalystWA
- CCService Lead - Cloud hosting and storageNSW
- CCAgile Performance Tester- Bamboo, Jenkins, Confluence, JiraNSW
- FTPortfolio Governance ConsultantNSW
- CCTechnical Architect - CloudNSW
- FT1st Level IT Support - Microsoft EnvironmentNSW
- CCEnvironment Support AnalystQLD
- CCSales Support Associate - TelecommunicationsNSW
- FTIdentity Systems Analyst / Solution DesignerACT
- FTNetwork Infrastructure SpecialistSA
- FTFull Stack DeveloperNSW
- FTChange and Release ManagerVIC
- CCVendor ManagerVIC
- CCContract Analyst Programmer (Java/J2EE/MyEclise) 160721/AP/vmpAsia
- CCBusiness Analyst/ Scrum MasterNSW
- CCContract IT Assistant (SQL/Windows) 160804/ITA/151Asia
- FTSenior .Net Applications SupportACT
- CCProject CoordinatorVIC
- FTSenior Technical ConsultantVIC
- FTDesktop Support Engineer (Renewable Contract)Asia
- FTSOE Desktop Engineer - must have SCCM 2012NSW
- FTIT Helpdesk (Microsoft)NSW