Lucian ConstantinReporter, IDG News Service, IDG News Service

Lucian Constantin writes about information security, privacy and data protection.

PCWorld News

Low adoption rate of HSTS website security mechanism is worrying, EFF says

The advocacy group cites insufficient awareness among developers and lack of support across all browsers as the likely reasons

Drive-by hack discovered in top video-sharing site

Attackers exploited the vulnerability to hijack 22,000 browsers and launch a large-scale DDoS attack, researchers from Incapsula said. But which site?

Malware virus

Microsoft to start blocking annoying adware by default

The company revised the policies for classifying, detecting and handling adware programs in its security software

Users face serious threat as hackers take aim at routers, embedded devices

Attacks are likely to continue and manufacturers are largely unprepared to respond, security researchers say

PCWorld News

Researchers publicly disclose vulnerabilities in Oracle Java Cloud Service

The flaws could allow attackers to break into Java applications hosted on the service, researchers from Security Explorations said

Hacked passwords can enable remote unlocking, tracking of Tesla cars

Tesla Motors accounts that enable remote car control are only protected by six-character passwords, researcher says.

Philips smart TVs open to wireless attacks, researchers say

The latest firmware for some Philips smart TVs opens an insecure Miracast wireless network by default, security researchers from ReVuln said.

PCWorld News

Cisco fixes denial-of-service flaws in IOS software for networking devices

Seven vulnerabilities that could lead to device reboots and other performance issues were patched in various IOS components

security 100026749 gallery

Full Disclosure security mailing list reborn under new management

Nmap creator sets up a replacement for the recently closed Full Disclosure security mailing list.

monster

Gameover malware targets accounts on employment websites

In addition to CareerBuilder, new variants of the Trojan program target Monster.com, researchers from F-Secure said.

bitcoin

Ransomware that demands Bitcoins is distributed by malware that steals bitcoins

Victims are asked to make bitcoin payments to recover encrypted files after their bitcoin wallets might have already been emptied

cyber security

Rogue apps could exploit Android vulnerability to brick devices, researchers warn

The only way to recover from such an attack involves wiping all user data from affected devices, researchers from Trend Micro said.

Fake Tor app has been sitting in Apple's App Store for months, Tor Project says

Apple has not removed the fake app so far despite being notified in December, Tor developers say

securityshowdown primary

Prominent security mailing list Full Disclosure shuts down indefinitely

The administrator says he had enough after a member of the hacker community tried to pressure him to remove unspecified content

credit cards generic

Hacker Diabl0 arrested in Thailand at the request of Swiss authorities

He is wanted in connection with computer fraud and credit card information theft in Switzerland.