Type your search and hit enter

Stories by Lucian Constantin

Kelihos botnet domain provider promises to make amends

Czech based free domain provider dotFree Group has settled the lawsuit brought against it by Microsoft in the Kelihos takedown case by suspending all abusive hosts registered through its service and promising better collaboration in the future.

Written by Lucian Constantin27 Oct. 11 21:57

Duqu incidents detected in Iran and Sudan

Security vendor Kaspersky Lab has identified infections with the new Duqu malware in Sudan and, more importantly, Iran, the main target of the Trojan's predecessor -- Stuxnet.

Written by Lucian Constantin27 Oct. 11 09:02

Researchers demo cloud security issue with Amazon AWS attack

Researchers from the Horst Goertz Institute (HGI) of the Ruhr-University Bochum (RUB) in Germany have demonstrated an account hijacking attack against Amazon Web Services (AWS) that they believe affects other cloud computing products as well.

Written by Lucian Constantin27 Oct. 11 02:31

Researchers demo cloud security issue with Amazon AWS attack

Researchers from the Horst Goertz Institute (HGI) of the Ruhr-University Bochum (RUB) in Germany have demonstrated an account hijacking attack against Amazon Web Services (AWS) that they believe affects other cloud computing products as well.

Written by Lucian Constantin27 Oct. 11 00:29

Exploit-powered Android Trojan uses update attack

A new variant of the DroidKungFu Android Trojan is posing as a legitimate application update in order to infect handsets, according to security researchers from Finnish antivirus vendor F-Secure.

Written by Lucian Constantin26 Oct. 11 04:39

Microsoft's YouTube channel gets hijacked and wiped clean

Microsoft's official YouTube channel was hijacked on Saturday and all videos hosted on it were temporarily removed. The hacker replaced them with others claiming that Microsoft is holding a contest.

Written by Lucian Constantin25 Oct. 11 05:20

World's most sophisticated rootkit is being overhauled

Experts from security vendor ESET warn that TDL4, one of the most sophisticated pieces of malware in the world, <a href="http://blog.eset.com/2011/10/18/tdl4-rebooted">is being rewritten and improved</a> for increased resilience to antivirus detection.

Written by Lucian Constantin22 Oct. 11 00:50

Adobe to fix Flash flaw that allows webcam spying

Adobe is working on a fix for a Flash Player vulnerability that can be exploited via clickjacking techniques to turn on people's webcams or microphones without their knowledge.

Written by Lucian Constantin21 Oct. 11 01:18

Opera denies refusing to patch critical vulnerability

Opera Software has released an update for its desktop browser in order to address a critical vulnerability in its handling of Scalable Vector Graphics (SVG) files, disclosed a week ago. The company denies refusing to patch the flaw when it was brought to its attention earlier this year.

Written by Lucian Constantin20 Oct. 11 23:58

Amazon Silk offers increased security on open Wi-Fi networks

The cloud-based design of Amazon's Silk browser has positive security side effects because it encrypts all traffic between users and websites, especially important when connected over unprotected Wi-Fi networks where session hijacking attacks can occur easily, the company said.

Written by Lucian Constantin20 Oct. 11 02:22

Oracle patches Java flaw exploited in SSL BEAST attack

Oracle has released a new Java security update to address multiple vulnerabilities, including one exploited during a recently disclosed attack that can allow eavesdropping on encrypted communications.

Written by Lucian Constantin19 Oct. 11 22:18

Scareware spread from popular torrent site via malvertizing

Some of the users who visited KickassTorrents (KAT), one of the most popular torrent trackers on the Internet, over the weekend had the nasty surprise of being infected with a rogue antivirus program called "Security Sphere 2012."

Written by Lucian Constantin18 Oct. 11 01:13
[]