Jeremy KirkAustralia Correspondent, IDG News Service

Jeremy reports on security and regional news for the IDG News Service.

malware_piracy

'Dridex' malware revives Microsoft Word macro attacks

Macro attacks fell out of favor years ago but are coming back, Trend Micro said. The new (old) target? Microsoft Word.

PCWorld News

Apple security checks may miss iWorm malware

Gatekeeper and XProtect aren't entirely effective against iWorm, according to new research

PCWorld News

Flaw in Visa cards could ring up a very large fraud

Visa's contactless payment cards in the UK allow large transactions in currencies other than the pound

adobe logo

Adobe's e-reader software dials back data collection after privacy uproar, EFF says

Digital Editions 4.0.1 doesn't send data on e-books without DRM and uses encryption

PCWorld News

Google project aims to preserve privacy when collecting software stats

RAPPOR has been released under an open-source license

PCWorld News

Facebook gives away homebrewed OS monitoring tool

Osquery watches for operating system state changes that might indicate a security issue

PCWorld News

How to figure out if a data breach is a hoax

Deloitte has published ways to figure out if an organization has really been breached

PCWorld News

Gigamon says it can analyze attacker SSL traffic without hitting performance

Attackers are increasingly using SSL to encrypt data they steal, which poses challenges for security

PCWorld News

Clues point to Russia in long-running spying campaign

'APT28' has predominantly focused on targets of interest to Russia, FireEye said

PCWorld News

'ScanBox' keylogger targets Uyghurs, US think tank, hospitality industry

The JavaScript-based attack doesn't put malware on a computer's disk

Rogue Tor 'exit node' server added malware to legitimate downloads

The server used a technique to append malware to legitimate code.

target

The 'Backoff' malware used in retail data breaches is spreading

A rising number of devices are connecting to Backoff-related infrastructure, Damballa says.

adobe logo

After uproar, Adobe begins encrypting user data collected from Digital Editions app

The company was criticized for sending data about content to its servers in plain text

poodle attack

Apple ending SSL 3.0 push notifications in wake of severe POODLE vulnerability

Apple is one of many companies moving to shut down SSL 3.0 for good.

securityshowdown primary

Microsoft discloses severe Office zero-day flaw, publishes quick fix

Attacks are under way using PowerPoint file, the company said