Lucian ConstantinRomania Correspondent, IDG News Service

Lucian Constantin writes about information security, privacy, and data protection for the IDG News Service.

Flash vulnerability being exploited in large-scale attacks, mere days after patch

The Fiesta exploit kit bundles an exploit for the CVE-2014-0569 vulnerability in Flash Player, researchers found

PCWorld News

Researcher creates proof-of-concept worm for network-attached storage devices

Infecting NAS devices with malware can be very valuable for attackers, a researcher said

PCWorld News

New Web vulnerability enables powerful social engineering attacks

The vulnerability allows creating links to legitimate sites that trigger malicious file downloads when clicked

android malware

New attack hides stealthy Android malware in images

The attack could be used to distribute malware through applications that appear harmless, researchers said

hp officejet pro x585 front

Utterly crazy hack uses long-distance lasers to send malware commands via all-in-one printers

If you saw it in a movie, you'd never believe it's true. But it is. Researchers have developed Morse code for transmitting data via pulses of light sent to a scanner via a laser.

dropbox sync

Dropbox says it wasn't hacked after 7 million alleged user credentials appear online

The credentials leaked by an alleged hacker online were likely stolen from other services, the company said.

hacker hand

Russian hackers exploit Windows zero-day flaw to target Ukraine, U.S. organizations

The vulnerability allows for arbitrary code execution and affects many versions of Windows and Windows Server

lastpass

What you should consider when choosing a password manager

Password managers offer many convenient options, but some come at the expense of security

shellshock bug

Linux botnet 'Mayhem' spreads through Shellshock exploits

The botnet targets Web servers that haven't been patched for recent vulnerabilities found in the Bash Linux shell

android malware

Android SMS worm Selfmite returns, more aggressive than ever

A new version of the worm is causing infected devices to send thousands of spam text messages and has spread to 16 countries so far.

ATM machine

Leaked programming manual may help criminals develop more ATM malware

Researchers found leaked documentation for application programming interfaces to interact with ATM devices.

android devil malware

Nearly half of all Android devices are still vulnerable to two serious browser exploits

The percentage is much higher in some countries and lower in the U.S, security firm Lookout estimates

ATM machine

Criminals used a malware program to steal millions from ATMs

The malware is installed from a bootable CD by first gaining physical access to the ATM

hacker hand

Bugzilla zero-day can reveal zero-day vulnerabilities in top open-source projects

Software projects that use the Bugzilla bug tracking software should deploy the latest patches immediately, security researchers said

Security researchers release 'unpatchable' tools that make USB drives malicious

The tools can be used to modify the firmware on USB flash drives in order to infect computers with malware.