Lucian Constantin - Author - Good Gear Guide

Stories by Lucian Constantin

Article | 21/09/2012 Eastern European cybercriminals said to trump Asian counterparts in sophistication

Despite an increasing number of successful cyberattacks launched by East Asian hackers against companies and government institutions around the world ...

Article | 19/09/2012 New IE exploit variant used to distribute PlugX malware, researchers say

Researchers from security vendor AlienVault have identified a variant of a recently discovered Internet Explorer exploit that is used to infect target...

Article | 19/09/2012 Phone numbers are enough to access user accounts on some mobile operator portals

Attackers could impersonate legitimate mobile users on the Web portals many mobile operators use to sell content and services to their customers becau...

Article | 18/09/2012 Virgin Mobile USA online subscriber accounts can be easily hacked, developer says

The online accounts of Virgin Mobile USA subscribers are vulnerable to brute force attacks because the company forces customers to use weak passwords ...

Article | 18/09/2012 Elusive TDL4 malware variant infected Fortune 500 companies, government agencies, researchers say

Researchers from security vendor Damballa have identified malicious Internet traffic that they believe is generated by a new and elusive variant of th...

Article | 17/09/2012 Open source vulnerability management software ThreadFix ready for production use

The first production-ready version of ThreadFix, an open-source software vulnerability management tool, was released Monday by Denim Group, a secure s...

Article | 14/09/2012 Over half of Android devices have unpatched vulnerabilities, report says

Over half of Android devices are vulnerable to known security flaws that can be exploited by malicious applications to gain complete access to the ope...

Article | 14/09/2012 'CRIME' attack abuses SSL/TLS data compression feature to hijack HTTPS sessions

The 'CRIME' attack announced last week exploits the data compression scheme used by the TLS (Transport Layer Security) and SPDY protocols to decrypt u...

Article | 12/09/2012 Botnet masters hide command and control server inside the Tor network

Security researchers from German antivirus vendor G Data Software have identified a botnet that is controlled by attackers from an Internet Relay Chat...

Article | 12/09/2012 EMV protocol flaw allows 'pre-play' attacks against chip-enabled payment cards, researchers say

Many automated teller machines (ATMs) and point-of-sale (POS) terminals fail to properly generate random numbers that are required by the EMV protocol...

Article | 11/09/2012 Leaked Apple UDIDs were stolen from digital publishing firm

The unique identifiers of 1 million Apple iOS devices that hackers leaked last week were stolen from the servers of a Florida-based digital publishing...

Article | 10/09/2012 Glastopf Web application honeypot gets SQL injection emulation capability

The Honeynet Project, a non-profit organization that develops open-source security research tools, has created a component for the Glastopf Web applic...

Article | 7/09/2012 Firefox 15.0.1 fixes bug that exposed websites visited in private browsing mode

Mozilla released Firefox 15.0.1 on Thursday in order to fix a bug that potentially exposed the websites visited by users while in "Private Browsing" m...

Article | 7/09/2012 Tool allows Mac OS X hackers with root access to easily extract keychain data

A new tool allows Mac OS X attackers with root OS access to easily steal the keychain password data of logged in users and reinforces the dangers of g...

Article | 6/09/2012 Security researchers to present new 'CRIME' attack against SSL/TLS

Two security researchers claim to have developed a new attack that can decrypt session cookies from HTTPS (Hypertext Transfer Protocol Secure) connect...