Lucian ConstantinRomania Correspondent, IDG News Service

Lucian Constantin writes about information security, privacy, and data protection for the IDG News Service.

spying eye

Blurred lines: Cyberespionage group caught borrowing banking malware code

A group of hackers that have been targeting military and government organizations from NATO countries have borrowed code from a leaked online banking Trojan.

Digital Key

Credentials stored in Ashley Madison's source code might have helped attackers

The Ashley Madison developers stored sensitive credentials like database passwords, AWS API secrets, authentication tokens and SSL private keys in their source code repositories.

Security online

Kaspersky Lab pushes emergency patch for critical vulnerability

Kaspersky Lab has released an emergency patch for some of its antivirus products after a security researcher found a critical vulnerability that could allow hackers to compromise computers.

linkedin

LinkedIn-based intelligence gathering campaign targets the security industry

A LinkedIn-based intelligence gathering campaign has been using fake LinkedIn profiles to map out the professional networks of IT security experts.

hack security malware

Shopperz adware takes local DNS hijacking to the next level

The Shopperz adware program uses a cunning technique to make DNS (Domain Name System) hijacking harder to detect and fix.

Web attack silently modifies DNS configurations in routers

Despite reports of hacking, baby monitors remain woefully insecure

A security analysis of nine baby monitors from different manufacturers revealed serious vulnerabilities and design flaws that could allow hackers to hijack their video feeds or take full control of the devices.

Checking mobile phone

Employees put business data at risk by installing gambling apps on their phones

The average company has more than one gambling application installed on some of its employees' mobile devices, and in some cases as many as 35.

generic image of a wi-fi router

Popular Belkin Wi-Fi routers plagued by unpatched security flaws

The Belkin N600 DB wireless dual band router model has unpatched vulnerabilities that could allow hackers to compromise affected devices.

Intel's new power-efficient graphics core

Intel says GPU malware is no reason to panic—yet

Malware that runs inside GPUs (graphics processing units) can be harder to detect, but is not completely invisible to security products.

online security

Linux Foundation's security checklist can help sysadmins harden workstations

The Linux Foundation published a list of security recommendations for hardening Linux workstations used by systems administrators.

spying eye

Researchers find many more modules of Regin spying tool

Security researchers from Symantec have identified 49 more modules of the sophisticated Regin cyberespionage platform that many believe is used by the U.S. National Security Agency and its close allies.

Security in cloud computing

BitTorrent patches flaw that could amplify distributed denial-of-service attacks

BitTorrent fixed a vulnerability that would have allowed attackers to hijack BitTorrent applications used by hundreds of millions of users in order to amplify distributed denial-of-service (DDoS) attacks.

generic image of a wi-fi router

Some routers vulnerable to remote hacking due to hard-coded admin credentials

Several DSL routers from different manufacturers contain a guessable hard-coded password that allows accessing the devices with a hidden administrator account.

Tor security concerns prompt largest dark market to suspend operations

Administrators of Agora, the largest online black marketplace operating on the Tor anonymity network, decided to temporarily suspend the website because of possible attacks based on recent methods of exposing Tor Hidden Services.

150817 google marshmallow 03

Certifi-gate flaw in Android remote support tool exploited by screen recording app

An application hosted in Google Play until yesterday took advantage for months of a flaw in the TeamViewer remote support tool for Android in order to enable screen recording on older devices.