Lucian ConstantinRomania Correspondent, IDG News Service

Lucian Constantin writes about information security, privacy, and data protection for the IDG News Service.

PCWorld News

Europol and security vendors disrupt massive Ramnit botnet

The operation seized command-and-control servers and Internet domains used by the Ramnit gang

PCWorld News

Facebook fixed 61 high-severity flaws last year through its bug bounty program

The company paid US$1.3 million to 321 outside security researchers in 2014

hacker hand

Million-plus WordPress sites may be vulnerable due to flaw in popular plug-in

Attackers can easily crack cryptographic keys used by the WP-Slimstat plug-in and use them to read information from a site's database

PCWorld News

Critical remote code execution flaw patched in Samba

Users should install the Samba updates available for their systems as soon as possible

ssl lock internet

Worse than Superfish? Comodo-affiliated PrivDog compromises web security too

The tool replaces SSL certificates without validating them first, opening the door to man-in-the-middle attacks

superfish in action on apple

Superfish vulnerability traced to other apps, too

The flawed security technique used by Superfish has been found in other software, which has begun a chain reaction of security vulnerabilities.

encryptitall

TrueCrypt security audit back on track after silence and uncertainty

Phase two of the project will begin shortly and will be done by a professional team of consultants

tv with hand on remote stock

Uh-oh: Samsung smart TVs don't encrypt your captured voice data

Samsung TVs send voice search queries to a remote server over an unencrypted connection, a researcher found.

PCWorld News

Microsoft adds HTTP Strict Transport Security support to Internet Explorer

Websites will now be able to instruct the browser to always reach them over HTTPS

malware primary

Fanny superworm uses decoys and cloaking techniques, and probably spawned Stuxnet

The worm, used by the Equation cyberespionage group, relied on zero-day exploits that were later used in Stuxnet.

Netgear wndr3700

Information disclosure flaw exposes Netgear wireless routers to attacks

The vulnerability allows attackers to extract admin passwords and wireless network keys

netatmo weather station

Personal weather stations can expose your Wi-Fi network

Netatmo weather stations upload Wi-Fi passwords and SSIDs to the company's servers over insecure connections

Malware virus

VirusTotal tackles the tricky false positives problem plaguing antivirus software

VirusTotal is gathering file metadata from trusted software makers to integrate in its online scanning engine

PCWorld News

Critical vulnerability in Group Policy puts Windows computers at risk

The design flaw took more than a year to patch and even then Windows Server 2003 was left out

PCWorld News

Facebook builds platform for companies to share cybersecurity threat data

Members of the platform will be able to query and upload data about the attacks they had to deal with