The destructive malware program that the FBI alerted some companies about this week was likely used against Sony Pictures Entertainment, according to technical evidence found by researchers in the program's code.
A vulnerability in the IBM Endpoint Manager for mobile devices could allow attackers to execute malicious code on the servers used by companies to manage devices.
Cybercriminals are using malware designed to steal payment card information from point-of-sale systems to also infect ticket vending machines and electronic kiosks.
Attackers have started using the Citadel Trojan program to steal master passwords for password management applications and other authentication programs.
"Where's Andrea?" That was the question on the lips of attendees at this week's No Such Con security conference.
A cyberespionage group has been using advanced spear-phishing techniques to steal email log-in credentials from the employees of military agencies, embassies, defense contractors and international media outlets that use Office 365's Outlook Web App.
Facebook and Yahoo have developed a mechanism to prevent the owners of recycled email addresses from hijacking accounts that were registered on other sites using those addresses in the past.
Many companies set up subdomains for use with external services, but then forget to disable them when they stop using those services, creating a loophole for attackers to exploit.
Google is letting users protect their accounts against password compromises by adding support for two-factor authentication based on physical USB keys.
Hackers claim to have stolen a database of almost 7 million Dropbox log-in credentials, but the company says its service was not hacked and that unrelated websites are the data source.
Many security experts feel that passwords are no longer sufficient to keep online accounts safe from hackers, but we're still a long way from widespread adoption of biometrics and alternative methods of authentication.
Hackers could have had an inside track on unpatched flaws in major software projects because of a critical vulnerability in Bugzilla, a system that many developers use to track and discuss bugs in their code.
Virtual private network servers based on OpenVPN might be vulnerable to remote code execution attacks through Shellshock and other recent flaws that affect the Bash Unix shell.
Apple's iOS 8 addresses a serious weakness that could allow attackers to hijack the wireless network authentication of Apple devices and gain access to enterprise networks.
Salesforce.com users are being targeted by a new version of a computer Trojan that has typically attacked online banking customers until now.
Most Popular Reviews
- 1 Samsung SUHD smart TV (JS9500) review
- 2 Samsung Galaxy S6 (32GB) review: Simply, the best Samsung Galaxy
- 3 LG 55-inch curved OLED (55EC930T) TV review: The future of OLED is bright
- 4 HTC One (M9) review: The weakest One in the trilogy
- 5 Google Nexus 9 review: The best of Google and HTC
Join the Good Gear Guide newsletter!
Best Deals on GoodGearGuide
Latest News Articles
- Another Uber office in China faces government scrutiny
- FAA program tests drones flying beyond pilot's line-of-sight
- Companies are falling behind on securing their SAP environments
- Sony's Xperia C4 ups the selfie ante, launching in Australia
- Attackers exploit vulnerabilities in two WordPress plugins
GGG Evaluation Team
First impression on unpacking the Q702 test unit was the solid feel and clean, minimalist styling.