Posted by on Tuesday, March 22, 2011,
In :
Security
To get around phishing blacklists in browsers, scammers are luring
people by using HTML attachments instead of URLs, a security firm is
warning. 
Chrome and
Firefox
are good at detecting phishing sites and warning Web surfers via a
browser notice when they are about to visit a site that looks dangerous.
So good, in fact, that scammers are resorting to a new tactic to lure
victims into their traps via e-mails--attaching HTML files that are
stored locally when they are opened, according ... Continue reading ...
Posted by on Tuesday, March 22, 2011,
In :
Security
In every disaster scammers see an opportunity, and the crisis in Japan
is no exception. Already there have been fake Red Cross e-mails
circulating and there will no doubt be more scams coming. Those
e-mails appear to come from the British Red Cross. They provide some
news on the earthquake and tsunami in Japan and urge people to donate to
a Yahoo e-mail address on a Moneybookers account, a money transfer
service that enables recipients to remain anonymous, according to App River, an e-m... Continue reading ...
Posted by vijai on Thursday, September 16, 2010,
In :
Security
This pie chart shows the different threats that
can come from visiting Web sites that advertise unauthorized content.
(Credit:
McAfee)
It's common knowledge that you can catch computer viruses on porn Web
sites. But did you know it's also risky to surf the Web searching for
free movies or music? A study from McAfee to be released on
Tuesday finds that adding the word "free" when looking for entertainment
content in search engines greatly increases the chances of landing on a
site hos...
Posted by Elinor Mills (CNET Writer) on Thursday, September 16, 2010,
In :
Security
Access to an e-mail account opens up access to all sorts of other information that could be used to steal someone's identity and drain bank accounts, open up credit cards, and even take out loans in their name.
It's not just personal information at stake in e-mail accounts. Use of weak password-reset security questions is believed to have allowed someone to access the Yahoo e-mail account of a Twitter employee last year and then use that to access the person's Google Docs account where there w... Continue reading ...
Posted by Oyya-Info on Friday, July 16, 2010,
In :
Security
Cryptography expert Bruce Schneier used to write his passwords down on a
slip of paper and keep it in his wallet. Today, he uses a free
Windows password-storage tool called Password
Safe that he designed five
years ago and released into the open-source community.
The desktop application lets users remember only one master password to
access their password list. But Schneier still recommends the
paper method for people who don't have their computers with them at all
times like he doe... Continue reading ...
Posted by Oyya-Info on Thursday, January 14, 2010,
In :
Security
Perhaps Google's announcement that Chinese cyber attackers went after human rights activists' Gmail accounts has made you skittish about just how private your own messages are on the Google e-mail service.
Well, if you want to take a significant step in keeping prying eyes
away from your electronic correspondence, one good encryption
technology that predates Google altogether is worth looking at. It's
called public key encryption, and I'm sharing some instructions on how
to get it working i... Continue reading ...
Posted by Oyya-Info on Thursday, December 3, 2009,
In :
Security
For about the 4,000th time in the last five years, I tried to sign
up for a new Web service, but it wouldn't accept my proposed password.
Apparently, the site operators decided that passwords should contain
only letters and numbers. Aarrrrgh! This isn't the first time I've seen this idiocy, and it won't be the last. But it should be.
Guidelines on how to construct a strong password almost uniformly
recommend using a mixture of upper and lower case letters, numbers, and
symbols. Tools for gene... Continue reading ...
Posted by Oyya-Info on Tuesday, November 24, 2009,
In :
Security
With most computers threatened by attacks coming through Web
applications, it's no surprise that security would be a key piece of
Chrome OS, Google's browser-based operating system that stores data in
the cloud.
Google showed off its new lightweight operating system designed for Netbooks and cloud computing on Thursday. As anticipated, it will rely on many of the same security features and concepts used by the Chrome browser.
"The browser is the operating system. We've expanded the browser to... Continue reading ...
Posted by Oyya-Info on Tuesday, November 10, 2009,
In :
Security
Apple on Monday released a large security update for Mac OS X that
fixes dozens of vulnerabilities and provides protection against
potential attacks exploiting a weakness in the protocol used to verify
that a domain is legitimate. There are 43 specific issues addressed in the 2009-006 update, released the same day as Mac OS X v.10.6.2.
It plugs a variety of holes for the Mac OS X v10.5.8, 10.6, 10.6.1, and
Mac OS X Server v10.6 and 10.6.1, many of which could lead to arbitrary
code execution... Continue reading ...
Posted by Oyya-Info on Thursday, October 29, 2009,
In :
Security
More midsize companies are being attacked by cybercriminals at the
same time they're spending less on security, says a McAfee report
released Wednesday.
Across the world, more than half of the 900 midsize businesses (51 to 1,000 employees) surveyed by McAfee for its report, The Security Paradox,
said they've seen an increase in security breaches over the past year.
Despite the threat, the recession has caused most of these companies to
freeze their IT security budgets.
M... Continue reading ...
Posted by Oyya-Info on Friday, October 9, 2009,
In :
Security
Comcast is launching a trial on Thursday of a new automated service
that will warn broadband customers of possible virus infections, if the
computers are behaving as if they have been compromised by malware.
For instance, a significant overnight spike in traffic being sent from
a particular Internet Protocol address could signal that a computer is
infected with a virus taking control of the system and using it to send
spam as part of a botnet.
Comcast is launching a trial of a service that... Continue reading ...
Posted by Oyya-Info on Thursday, October 8, 2009,
In :
Security
With security and cloud-computing both hot-button topics, Verizon
Communications and McAfee are joining forces to offer customers a
combination of the two.
Verizon's business unit and McAfee announced Thursday a new joint
venture to sell cloud-based security products and services to large
businesses and government agencies. With more companies tapping into
the "cloud" to lower costs and outsource administration, McAfee and
Verizon will sell a new suite of cloud-based security products,
expandi... Continue reading ...
Posted by Oyya-Info on Wednesday, September 9, 2009,
In :
Microsoft
Microsoft issued a formal security advisory late Tuesday on a reported zero-day flaw
in Windows Vista and Windows Server 2008. However, the software maker
also said that the flaw does not affect the final version of
Windows 7, contrary to earlier reports.
"Microsoft is investigating new public reports of a possible
vulnerability in Microsoft Server Message Block (SMB) implementation,"
Microsoft said in the advisory. "We are not aware of attacks that try to use the reported vulnerabilities o... Continue reading ...
Posted by Oyya-Info on Friday, August 14, 2009,
In :
Security
One of the best ways to protect your online security is to have
strong passwords that you change periodically. But that's easier said
than done. Coming up with hard-to-guess passwords is hard enough, but
it's even harder to have separate passwords for different sites and to
remember new ones after you change them.
One way to create a password that's hard to guess but easy to remember
is to make up a phrase. You could type in the entire phrase (some sites
let you use spaces, others don't) or y... Continue reading ...
Posted by Oyya-Info on Sunday, July 26, 2009,
In :
Security
Two researchers for Hewlett-Packard have created a browser-based
darknet, an idea that could make it easier for businesses to keep
eavesdroppers from uncovering confidential information.
Darknets are encrypted peer-to-peer networks normally used to
communicate files between closed groups of people. Most darknets
require a certain level of technological literacy to set up and
maintain, including taking care of the necessary servers. However, HP
researchers Billy Hoffman and Matt Wood plan nex... Continue reading ...
Posted by Oyya-Info on Wednesday, July 22, 2009,
In :
Security
The techniques Google uses to protect Chrome users from browser-based
attacks have taken on new importance with the company's plan to make
the software the centerpiece of a Netbook operating system.
Two weeks ago, Google announced plans for the open-source Chrome OS
designed for people who spend most of their time on the Web. The Google
Chrome operating system is a "natural extension" of the Chrome browser,
Sundar Pichai, vice president of product management, and Linus Upson,
engineering d... Continue reading ...
Posted by Oyya-Info on Friday, July 17, 2009,
In :
Google
New versions of Google Chrome are out, fixing bugs and patching security holes in both the stable build and the beta build.
Two serious security flaws have been plugged. One had allowed for
malicious code exploitation within the Chrome tab sandbox. Found by the
Google security team, the threat was serious enough that Google has
declined to be more specific until "a majority of users are up to date
with the fix," the company said in a blog post.
A second security risk caused by memory corru... Continue reading ...
Posted by Oyya-Info on Wednesday, July 15, 2009,
In :
Security
There is a critical JavaScript vulnerability in the
Firefox 3.5 Web browser, Mozilla has warned.
The zero-day flaw lies in Firefox 3.5's Just-in-time (JIT)
JavaScript compiler. Proof-of-concept code to exploit the vulnerability
has been posted online by a security research group, Mozilla said in a post on its security blog on Wednesday. Security company Secunia rated the vulnerability as "highly critical" on Wednesday.
The hole could allow a hacker to launch a "drive-by" attack,
according to... Continue reading ...
Posted by Oyya-Info on Friday, June 19, 2009,
In :
Security
Microsoft will launch a public beta of its anti-malware service,
Microsoft Security Essentials, on Tuesday as it phases out its Live
OneCare suite in favor of a simpler free consumer security offering.
Microsoft Security Essentials, which will run on Windows XP, Vista, and
Windows 7, will be available in the U.S., Brazil, and Israel in English
and Brazilian Portuguese. A public beta version for Simplified Chinese
will be available later in the year.
The service works like traditional antivi... Continue reading ...
| |
