APT 30 has been operating since 2005 without significantly changing its attack methods, FireEye said. Its target? "Air-gapped" networks that are supposed to be physically isolated from the Internet.
Security measures put in place after a first breach last year failed to stop hackers from striking again
The company's software applies a strict regime of rules over who can open a file
The plugins are low-hanging fruit, but the attacks have been widespread and disruptive, the FBI said
TrustWave will become a standalone business unit of SingTel and not curtail its services
The group is advising conference attendees to change their passwords
EFF said the GitHub attack reinforces the case for using HTTPS
The government hasn't shown that it is improving its zero-day flaw notification efforts
The DDoS attacks were aimed at two GitHub-hosted projects fighting Chinese censorship.
The SDN project now has a security response team to quickly handle new vulnerability reports
Many websites are not using updated APIs that would prevent Likes from being easily faked
MCS Holdings says it deleted the certificates after it was notified
Secunia found that overall more than 83 percent of vulnerabilities had patches ready when the flaws became public
A flaw in Android could allow apps to be modified or replaced by malware, Palo Alto Networks said.
Lightweight sensors record network data so admins can go back and analyze it