Lucian ConstantinRomania Correspondent, IDG News Service

Lucian Constantin writes about information security, privacy, and data protection for the IDG News Service.

blackphone 100248424 orig

Blackphone's super-secure communications app had serious flaw

A vulnerability in the bundled encrypted messaging app would have allowed attackers to execute malicious code on the device

D-Link DIR-880L

DNS hijacking vulnerability affects D-Link DSL router, possibly other devices

A vulnerability in ZynOS could spell trouble for users of routers from D-Link, TP-Link, ZTE and other manufacturers, a researcher said.

hacker hand

Source code reveals link between NSA and Regin cyberespionage malware

Security researchers found a strong connection between Regin and a keylogger used by the Five Eyes intelligence alliance

Adobe pushes critical Flash Player update to fix latest zero-day

Users with automatic updates enabled in Flash Player have already started receiving the new patch

PCWorld News

Thousands of U.S. gas stations exposed to Internet attacks

Over 5,000 tank gauges that are used to monitor fuel levels and potential spills are accessible from the Internet without a password

Adobe fixes just one of two actively exploited zero-day vulnerabilities in Flash Player

Internet Explorer and Firefox users with Flash Player enabled remain at risk.

megachat test

Kim Dotcom takes on Skype with end-to-end encrypted video calling service

MegaChat opens up for public testing

PCWorld News

Atlassian fixes critical vulnerability in development collaboration products

The flaw can be exploited to execute malicious Java code on servers

PCWorld News

Attackers are exploiting a zero-day vulnerability in Flash Player

The exploit was included in the Angler exploit kit, a security researcher reported

PCWorld News

Critical Java updates fix 19 vulnerabilities, disable SSL 3.0

Future Java 7 security patches will not be publicly available so users should migrate to Java 8

PCWorld News

Oracle to fix 167 vulnerabilities, including serious backdoor-like flaw in E-Business Suite

The E-Business Suite vulnerability can give attackers complete control over databases that store sensitive business information

PCWorld News

Web-based exploits on the decline, but users still slow to patch

Attackers are no longer focusing on Java vulnerabilities and are increasingly looking at other targets, like Silverlight

PCWorld News

Report: NSA not only creates, but also hijacks, malware

Documents leaked by Edward Snowden show the NSA hijacks botnets and computers infected with malware by other intelligence agencies

8 securitytips primary 100024721 large

Google reveals third unpatched Windows zero-day vulnerability in a month

Google is sticking to its 90-day disclosure deadline, despite criticism by Microsoft.

cookies

This ad company is using Verizon's unstoppable supercookies to track you

An advertising company uses the unique identifier headers added by Verizon to Web traffic to recreate tracking cookies deleted by users