When logging into Facebook today, I was greeted with a new set of controls. In the wake of the apparent success of Google+, it seems that Facebook would like to reassure their user base that they too can control who sees what you post, and who you tag. You can now easily tag who you’re [...]
Today we saw the discovery of another rogue SSL certificate - this time for *.google.com. The certificate itself was issued five weeks ago. This will allow an attacker to sniff the traffic to virtually all of Google’s services even with HTTPS enabled.
Right now, there’s an unconfirmed report this attack is happening in Iran. Frankly, I’m [...]
Enterprise security today is in a sad, sad state. Cyber criminals are pulling off millions of dollars in heists on a daily basis. Tens of millions of corporate PCs are infected. Corporate networks are being pwned left and right. Although there is more than enough blame to spread for the situation — end-users certainly play [...]
The SpyEye hacking toolkit has added an Android component that collects the text messages some banks use as an extra security precaution, a researcher said today.
“The standard SpyEye now also entices a user to download an Android app, which is actually a component that’s Android-specific malware,” said Amit Klein, the chief technology officer of Boston-based [...]
SAP customers looking to open iTunes-like enterprise app stores through Apple’s Volume Purchase Program (VPP) will soon have the ability to manage and deploy the software securely thanks to new VPP support in the Sybase Afaria platform, SAP said Tuesday at the Tech Ed conference in Las Vegas.
Afaria delivers mobile applications to devices and allows [...]
Since our presentation of COM server-based binary planting exploits at the Hack in the Box conference in May this year, Microsoft has introduced a number of relevant changes to Windows and Internet Explorer.
To refresh our memory: in Windows, so-called “special folders” (e.g., Control Panel or My Computer) are implemented as in-process COM servers associated [...]
Steve Jobs’ resignation as CEO of Apple will have only a small impact on the company’s sales, a new study by ChangeWave Research has found.
According to the research firm, which surveyed 2,297 consumers between September 6 and September 12, just 4 percent of respondents said that they would be “less likely” to buy Apple products [...]
The intellectual property landscape in the mobile industry has posed some challenges for Google’s Android platform, pushing the company to seek patents to help defend Android against litigation from other major players. In addition to Google’s landmark $12.5 billion acquisition of Motorola, it turns out that the search giant has quietly been seeking out other [...]
The Apache Foundation has announced that the newly released version 2.2.21 of its free web server is essentially a bug fix and security release. In particular, the developers focused on the vulnerability that makes servers susceptible to Denial-of-Service (DoS) attacks.
The new version corrects and complements the first fix, which was released only two weeks ago. [...]
On its European Public Policy Blog, Google has announced that it is to provide an option for wireless access point owners to opt-out from Google’s location services. The location of private Wi-Fi systems is used by Google, and other operators, as one means to help estimate a phone user’s location for the delivery of some [...]