Jeremy KirkAustralia Correspondent, IDG News Service

Jeremy reports on security and regional news for the IDG News Service.

PCWorld News

Emerging networking technology used by Apple, Cisco will frustrate firewalls

Multipath TCP improves performance but hampers security

ssl secure browser security lock

Google Search starts penalizing websites that don't use encryption

The move is intended to promote better security practices across the Web

ssl lock internet

OpenSSL releases 9 software fixes amid post-Heartbleed security scrutiny

None of the problems are as bad as Heartbleed, but administrators are advised to patch

PCWorld News

US federal agencies halt background checks by contractor after cyberattack

US Investigations Services claimed the incident has the markings of a state-sponsored attack

PCWorld News

Symantec patches privilege escalation flaws in Endpoint Protection

Exploit code for the flaws was released Tuesday

PayPal

Researcher says PayPal's two-factor authentication is easily beaten

Joshua Rogers decided to go public with the information after notifying PayPal of the problem on June 5

Is your Dropcam live feed being watched by someone else?

Two researchers will show at Defcon how a Dropcam could turn into a Trojan horse

password

Mozilla warns of leaky developer network database

Email addresses of 76,000 were exposed along with 4,000 encrypted and salted passwords

Microsoft security tool EMET 5.0 puts a leash on plugins

The latest version of EMET allows administrators to block plugins on certain websites

PCWorld News

No patch yet for zero day in Symantec Endpoint Protection software driver

Symantec has published recommendations for mitigating the danger

iphone side by

iPhone gets first free app for encrypting voice calls

Signal is compatible with RedPhone, its Android sibling, and scrambles voice calls placed via the iPhone.

Zero-day flaws found in Symantec's Endpoint Protection

Offensive Security said the flaws could be used to gain full system access. Symantec is investigating the matter.

instagram app

Using Instagram for iOS on public Wi-Fi poses risk of an account hijack, researcher says

Instagram is moving to full https encryption but isn't there just yet

tails screenshot

Privacy-focused Tails OS compromised: How to stay safe until it's patched

Patches are ready for IP2, the vulnerable component in Tails, but it's not clear when Tails will update

'Canvas fingerprinting' online tracking is sneaky but easy to halt

At least two browser extensions can stop the tracking method, which was in wide use earlier this year