Lucian ConstantinRomania Correspondent, IDG News Service

Lucian Constantin writes about information security, privacy, and data protection for the IDG News Service.

password

Why Yahoo's new on-demand password system is no two-factor authentication killer

The new authentication option offers better security than static passwords, but it's not as strong as two-step verification

usb high voltage death machine

'USB Killer' is a flash drive designed to fry your laptop

A hardware enthusiast created a USB thumb drive that can discharge a high voltage into a computer's USB interface

World of Warcraft: Cataclysm

New ransomware program targets gamers

Ugh - the program encrypts game saves, mods, maps and other user-generated content for a large number of popular games.

hackingback

Over a million WordPress websites at risk because of flaw in popular SEO plug-in

The vulnerability in a plug-in from Yoast exposes sites to SQL injection attacks

PCWorld News

Code name found in Equation group malware suggests link to NSA

The name matches an NSA project listed in a secret document leaked by Edward Snowden

hacker hand

Windows PCs remained vulnerable to Stuxnet-like attacks despite 2010 patch

A Microsoft patch for an exploit used by the Stuxnet worm was incomplete, researchers found

PCWorld News

Snowden docs show CIA's attempts to defeat Apple device security

A secret CIA-sponsored conference reportedly hosted talks on stealing encryption keys from Apple devices and infecting them with malware

security

Snowden docs show CIA's attempts to hack Apple devices

Documents leaked by Edward Snowden detail how the CIA repeatedly tried to crack the security in Mac OS X and iOS applications.

facebook

Researcher releases tool that can hijack accounts on sites using Facebook Login

Attackers can force users to associate their accounts on other sites with malicious Facebook accounts.

PCWorld News

Cyberespionage arsenal could be tied to French intelligence agencies

Five additional Trojan programs are related to the Babar malware that Canada's government believes is the work of French intelligence

PCWorld News

Police arrest man in UK over US Defense Department network intrusion

The intrusion resulted in the contact information of 800 DoD employees being stolen from a satellite communications system

windows 10 samsung

Bad news: Windows PCs are also vulnerable to dangerous FREAK encryption attacks

A recently disclosed vulnerability in SSL/TLS implementations also affects Microsoft's Schannel crypto library and Internet Explorer

Adobe invites help with hunting vulnerabilities, but no bounty money

The company offers no bounties, just public kudos.

PCWorld News

Some Bitdefender products break HTTPS certificate revocation

This allows man-in-the-middle attackers with access to revoked, but otherwise valid, certificates to manipulate encrypted traffic

PCWorld News

Europol and security vendors disrupt massive Ramnit botnet

The operation seized command-and-control servers and Internet domains used by the Ramnit gang