Attackers have started using the Citadel Trojan program to steal master passwords for password management applications and other authentication programs.
"Where's Andrea?" That was the question on the lips of attendees at this week's No Such Con security conference.
A cyberespionage group has been using advanced spear-phishing techniques to steal email log-in credentials from the employees of military agencies, embassies, defense contractors and international media outlets that use Office 365's Outlook Web App.
Facebook and Yahoo have developed a mechanism to prevent the owners of recycled email addresses from hijacking accounts that were registered on other sites using those addresses in the past.
Many companies set up subdomains for use with external services, but then forget to disable them when they stop using those services, creating a loophole for attackers to exploit.
Google is letting users protect their accounts against password compromises by adding support for two-factor authentication based on physical USB keys.
Hackers claim to have stolen a database of almost 7 million Dropbox log-in credentials, but the company says its service was not hacked and that unrelated websites are the data source.
Many security experts feel that passwords are no longer sufficient to keep online accounts safe from hackers, but we're still a long way from widespread adoption of biometrics and alternative methods of authentication.
Hackers could have had an inside track on unpatched flaws in major software projects because of a critical vulnerability in Bugzilla, a system that many developers use to track and discuss bugs in their code.
Virtual private network servers based on OpenVPN might be vulnerable to remote code execution attacks through Shellshock and other recent flaws that affect the Bash Unix shell.
Apple's iOS 8 addresses a serious weakness that could allow attackers to hijack the wireless network authentication of Apple devices and gain access to enterprise networks.
Salesforce.com users are being targeted by a new version of a computer Trojan that has typically attacked online banking customers until now.
The hackers behind the Kelihos botnet are trying to capitalize on users' increased awareness about the security of Apple online accounts through a new phishing campaign.
Professional networking site LinkedIn is rolling out new features that allow users to easily manage authenticated sessions across multiple devices and better understand what caused security-related changes on their accounts.
Future versions of the Firefox OS mobile platform will allow users to control application-specific permissions, a feature with both privacy and security benefits that's missing on Android.
Most Popular Reviews
- 1 Hisense Series 7 ULED 4K UHD TV review
- 2 Samsung Galaxy Note 7 review
- 3 Portable power: Venom Blackbook 13 Zero review
- 4 Alcatel Idol 4S review: King of the mid-range?
- 5 Samsung Galaxy S7 Edge Review
Join the PC World newsletter!
Latest News Articles
- Companies say IoT matters but don't agree how to secure it
- A robot fish is helping the Navy improve underwater movement
- Here's what you should know, and do, about the Yahoo breach
- Well, I never! iOS 10's voicemail transcription has a potty mouth
- Privacy groups urge US FTC to investigate WhatsApp promises
GGG Evaluation Team
First impression on unpacking the Q702 test unit was the solid feel and clean, minimalist styling.
- CCSenior Business Analyst -Change and SAP ProcurementNSW
- FTPositive Vetted ICT positions - Defence intelligence and information securityACT
- CCTechnical Architect/DesignerACT
- FTDesktop/Application SupportVIC
- CCService Desk analystSA
- FTIT Pre-Sales EngineerSA
- CCSolutions ArchitectACT
- FTNetApp Storage ConsultantWA
- FTEMC Storage ConsultantWA
- CCNetwork and Security EngineerNSW
- CCBI Reporting AnalystACT
- CCData Analyst | Data Management Framework | Experience in RNSW
- CCBusiness Analyst with change management experienceACT
- CCInfrastructure Project Manager - DCR ProjectNSW
- CCSolution ArchitectQLD
- CCDesktop Infrastructure SpecialistACT
- CCWAN Architect and ConsultantWA
- FTOutbound TelesalesVIC
- CCBusiness ArchitectNSW
- CCBusiness Analyst - Telecom ProjectNSW
- CCContract Systems Analyst (IT Security) 160928/JP/653Asia
- FTAndroid DeveloperNSW
- CCSenior .NET DeveloperVIC
- CCData Analyst | Data Feeds | Catalogue and MapNSW
- FTScrum Master | High Profile FintechNSW