Lucian ConstantinReporter, IDG News Service, IDG News Service

Lucian Constantin writes about information security, privacy and data protection.

Adobe patches two critical vulnerabilities in Shockwave Player

The flaws could allow attackers to execute malicious code on computers remotely

Slew of spoofs used in massive, record-breaking DDoS attack

The attack peaked at over 400Gbps according to CloudFlare, the company whose infrastructure was targeted

Unveiling 'The Mask': Sophisticated malware ran rampant for 7 years

The attack campaign is highly sophisticated and appears to be a state-sponsored operation.

Snapchat vulnerability can be exploited to crash iPhones, researcher says

Snapchat request tokens can be resused to launch denial-of-service attacks against the app's users.

Cybercriminals compromise home routers to attack online banking users

Attackers changed the DNS configuration of vulnerable home routers to mount man-in-the-middle attacks against users in Poland.

facebook

Syrian Electronic Army tries (and fails) to hijack Facebook

Some registration information for facebook.com was changed, but the domain was not redirected to an unauthorized server

adobe flash logo

New Flash exploit used to distribute credential-stealing malware

The exploit is embedded into documents distributed as email attachments, researchers from Kaspersky Lab said.

PCWorld News

GCHQ reportedly infiltrated and attacked hacktivist groups

Leaked documents suggest the agency used denial-of-service tactics and assisted law enforcement in identifying Anonymous members

adobe flash logo

Adobe releases critical emergency update for Flash Player

The update patches a vulnerability for which an exploit was reported in the wild, the company said

Tumblr adds SSL encryption option, but not as the default

To benefit from the added security users need to enable the SSL option in the account settings

Prominent cryptographers targeted by malware attacks

Other cryptographers were also targeted by the same attackers, the researcher said

Researchers: Mobile users at risk from lack of HTTPS use by mobile ad libraries

Recent vulnerabilities found in many advertising SDKs for Android apps could be mitigated by using HTTPS, researchers said

target

Tor-enabled malware stole credit card data from PoS systems at dozens of retailers

Details of over 50,000 credit and debit cards have been stolen from 119 PoS terminals infected with a malware program called ChewBacca

GoDaddy owns up to role in epic Twitter account hijacking

PayPal dismissed claims that its customers representatives were tricked into helping the attacker

hacker hand

Hackers transform Angry Birds website into 'Spying Birds' following NSA claims

The hackers placed an image with the message 'Spying Birds' on the site's home page