News

Web application security

• January 14, 2013 14 Jan'13

  Oracle rushes out patches for Java zero days

  Oracle has released two out-of-band security updates for the latest zero day vulnerabilities in Java

• December 12, 2012 12 Dec'12

  Ghost Shell hacktivists publish over a million credentials

  The Ghost Shell group, an offshoot of the Anonymous hacking collective has published the log-in details from 1.6 million accounts

• December 07, 2012 07 Dec'12

  UK government jobs website exploited by hackers

  Hackers have been able to exploit security flaws in a new government jobs website to steal personal information about job applicants

• November 27, 2012 27 Nov'12

  Zero-day exploit for Yahoo Mail goes on sale

  Hacker sells $700 zero-day exploit for Yahoo Mail that allows attacker to use cross-site scripting vulnerability to steal cookies and hijack accounts

• October 30, 2012 30 Oct'12

  IT security budgets mismatched to hacker targets, study shows

  IT security budgets are not being used to provide defence technologies in some areas most likely to be targeted by hackers, a study shows

• October 10, 2012 10 Oct'12

  RSA Europe: Cloud key to future information security, says Qualys

  Cloud computing is an opportunity information security professionals should not miss, says Philippe Courtot, CEO of security firm Qualys

• October 05, 2012 05 Oct'12

  Security firm warns against Samsung Galaxy Tab for enterprise use

  Security specialist Context Information Security says vulnerabilities in the Samsung Galaxy Tab make it unsuitable for use in the enterprise

• October 02, 2012 02 Oct'12

  Hackers target White House military network

  Hackers using computers in China have infiltrated an “unclassified” network in the US White House, believed to be used for issuing nuclear commands.

• September 25, 2012 25 Sep'12

  Security concerns hold back mobile banking adoption

  More than two-thirds of smartphone owners have not yet adopted mobile banking apps because of security concerns, a survey has revealed

• September 18, 2012 18 Sep'12

  Microsoft investigates IE zero-day flaw

  Microsoft says it is investigating reports of a vulnerability in Internet Explorer 6, 7, 8, and 9

• September 17, 2012 17 Sep'12

  Android devices vulnerable to security breaches

  More than 50% of devices running Google's Android OS have unpatched vulnerabilities, opening them up to malicious apps and other attacks

• July 10, 2012 10 Jul'12

  Microsoft repairs dangerous XML Core Services zero-day flaw

  The Microsoft XML Core Services vulnerability is being actively targeted by cybercriminals. In addition, Microsoft issued a critical update to Internet Explorer 9.

• March 19, 2012 19 Mar'12

  Study: Shnakule, four other malnets caused most 2011 attacks

  Huge global malnets, such as Shnakule, were responsible for most attacks in 2011, and Blue Coat predicts they will trigger 66% of all attacks in 2012.

• February 24, 2012 24 Feb'12

  Windows security case study: Controlling Windows 7 user privileges

  After migrating from Windows XP to Windows 7, Oxford University Press used Avecto’s Privilege Guard to control Windows 7 user privileges.

• February 03, 2012 03 Feb'12

  Microsoft spurs Browsium to rewrite tool for running IE6 on Windows 7

  Microsoft has spurred Browsium to rewrite its tool for running IE6 on Windows 7, limiting the security threat posed by continued use of IE6.

• December 29, 2011 29 Dec'11

  Emerging 2012 security trends demand information security policy changes

  2012 security trends involving cookies, fines, devices and threats will demand more skills -- and a little finesse -- from security professionals.

• March 07, 2011 07 Mar'11

  Malvertising, pop-up ad virus problems demand more user protection

  A recent pop-up ad infection on the London Stock Exchange's website highlights the growing scourge of malicious advertising, or malvertising.

• March 10, 2008 10 Mar'08

  Web 2.0 presents no new security challenges, is just marketing hype: Secure Computing

  Secure Computing's Scott Montgomery says Web 2.0 security is marketing hype, application flaws come from overworked programmers and Australia is doing better at cyber-security than the USA and Europe.