More Network Security News

Police-themed ransomware targets U.S., Canadian users

A ransomware application that locks computers and asks their owners to pay fines for allegedly violating several laws through their online activity is targeting U.S. and Canadian users, malware experts from security firm Trend Micro said on Wednesday.

Hackers blackmail Belgian bank with threats to publish customer data

Hackers claimed to have breached the systems of the Belgian credit provider Elantis and threatened to publish confidential customer information if the bank does not pay $197,000 before Friday.

Most of the Internet's top 200,000 HTTPS websites are insecure, group says

Ninety percent of the Internet's top 200,000 HTTPS-enabled websites are vulnerable to known types of SSL attack, according to a report by the Trustworthy Internet Movement (TIM), a nonprofit organization that tries to solve Internet security, privacy and reliability problems.

Russian cybercriminals earned $4.5 billion in 2011

Russian-speaking hackers earned an estimated $4.5 billion globally using various online criminal tactics, Russian security analyst firm Group-IB said in a report published on Tuesday.

Most IT, security pros see Anonymous as serious threat

The majority of IT and security professionals believe that Anonymous and hacktivists are among the groups that are most likely to attack their organizations during the next six months, according to the results of a survey sponsored by security vendor Bit9.

Security, privacy ideas emerge at Demo Spring conference

The cool new Internet ideas of yesteryear often create the headaches of today, and some startups at the Demo conference are starting to try to solve those problems.

Google warns 20,000 websites they could be infected with malware

Google has warned 20,000 websites that they might be hacked and injected with JavaScript redirect malware, Google said.

Sophos takes down partner portal after signs of hacking

Security firm Sophos has taken its partner portal offline and will reset every user's password after it found signs of a potential security breach on the server hosting it.

Study finds major flaws in single sign-on systems

The single sign-on protocols that allow users to sign in to a range of websites with their Google or Facebook accounts suffer from security flaws that could allow scammers to log in as somebody else, security researchers have reported.

Reborn LulzSec claims hack of dating site for military personnel

A group of hackers claiming to be the reborn Lulz Security (LulzSec) took credit for an alleged compromise of MilitarySingles.com, a dating website for military personnel, and the leak of over 160,000 account details from its database.

Facebook scammers host Trojan horse extensions on Chrome Web Store

Cybercriminals are uploading malicious Chrome browser extensions to the official Chrome Web Store and use them to hijack Facebook accounts, according to security researchers from Kaspersky Lab.

Java-based Web attack installs hard-to-detect malware in RAM

A hard-to-detect piece of malware that doesn't create any files on the affected systems was dropped onto the computers of visitors to popular news sites in Russia in a drive-by download attack, according to security researchers from antivirus firm Kaspersky Lab.

How GSA is securing its cloud apps

As the General Services Administration (GSA) migrates to a work-anywhere, work-anytime strategy, the real estate arm of the U.S. federal government is discovering that having an iron-clad security strategy is critical to its adoption of cloud-based applications.

News International security chief arrested in phone hacking case

Scotland Yard arrested six people, including Mark Hanna, the media company's director of group security since 2009

Few tech issues will move in Congress for the rest of the year

As the U.S. Congress begins to gear up for November's elections, several technology-related issues remain unresolved. Lawmakers have pushed in recent months for new cybersecurity legislation, online copyright enforcement provisions, new online privacy protections and an Internet sales tax, but progress will get tougher in the coming months.

5 signs that you've lost control over your cloud apps

CIOs are waking up to the reality that they've lost control over access to data stored in software-as-a-service applications purchased by other departments.

IETF explores new working group on identity management in the cloud

Proponents of a common scheme for managing user identity in cloud-based applications will pitch their idea to the Internet's premier standards-setting body at a meeting in Paris later this month.

Vasco plays a tune to make online transactions more convenient

Authentication specialist Vasco Data Security International has launched two new e-signature devices that can either scan an image or listen to a sound snippet to take some of the hassle out of signing online transactions, the company said on Wednesday.

Rugged DevOps: In search of the defensible infrastructure

DevOps moves too fast to build security into the process, some say. Not true, say others who believe one just needs to get a little Rugged.

Most organizations take months, years to discover a breach

Over 90 percent of data breaches are the result of external attacks and almost 60 percent of organizations discovered them months or years later, Verizon said in a report released at the RSA security conference on Wednesday.