Lucian ConstantinRomania Correspondent, IDG News Service

Lucian Constantin writes about information security, privacy, and data protection for the IDG News Service.

android devil malware

Nearly half of all Android devices are still vulnerable to two serious browser exploits

The percentage is much higher in some countries and lower in the U.S, security firm Lookout estimates

ATM machine

Criminals used a malware program to steal millions from ATMs

The malware is installed from a bootable CD by first gaining physical access to the ATM

hacker hand

Bugzilla zero-day can reveal zero-day vulnerabilities in top open-source projects

Software projects that use the Bugzilla bug tracking software should deploy the latest patches immediately, security researchers said

Security researchers release 'unpatchable' tools that make USB drives malicious

The tools can be used to modify the firmware on USB flash drives in order to infect computers with malware.

iPad Air

Is that used iPad stolen? Apple creates tool for would-be buyers to check

The tool will help prospective buyers of used iPhones and iPads to determine if the devices were lost or stolen

PCWorld News

Xen Project discloses serious vulnerability that impacts virtualized servers

Major cloud providers like Amazon and Rackspace were forced to reboot some of their servers in order to apply the patch

OpenVPN servers can be vulnerable to Shellshock Bash vulnerability

Some OpenVPN configuration options open remote attack vectors for Bash vulnerabilities, the VPN provider warns.

PCWorld News

Hurry! Wait! Go! Joomla stumbles with patch for serious vulnerability

Joomla patches were reissued after the first versions broke the update process of existing installations

PCWorld News

Cisco, Oracle find dozens of their products affected by Shellshock

Cisco has identified 71 products vulnerable to Shellshock and Oracle 51, but the number is likely to increase

PCWorld News

Malvertising campaign delivers digitally signed CryptoWall ransomware

The wave of attacks through malicious advertisements continues to hit visitors of popular websites

shellshock bug

Improved patch tackles new Shellshock Bash bug attack vectors

Two new exploitable issues were found in the Bash shell and could lead to remote code execution, researcher warns

PCWorld News

New organization sets out to make secure communication tools more user-friendly

Simply Secure will identify usability problems in open-source privacy tools and will work with developers to address them

ios8 icon tealbackground

Apple's iOS 8 fixes enterprise Wi-Fi authentication hijacking flaw

A weakness in Apple's Wi-Fi implementation could give hackers access to enterprise wireless networks, researchers said

PCWorld News

Twitter patches vulnerability that could have impacted advertising accounts

The security flaw was reported through the company's new bug bounty program and researcher was rewarded with $2,800

readerhero

Adobe releases previously delayed security updates for Reader and Acrobat

The updates fix eight vulnerabilities, including some that could be exploited to infect computers with malware