Lucian ConstantinReporter, IDG News Service, IDG News Service

Lucian Constantin writes about information security, privacy and data protection.

credit cards generic

Hacker Diabl0 arrested in Thailand at the request of Swiss authorities

He is wanted in connection with computer fraud and credit card information theft in Switzerland.

Proprietary firmware poses a security threat, Ubuntu founder says

Hardware manufacturers should move the software part of their innovations into the Linux kernel, Mark Shuttleworth said.

bitcoin

Bitcoin-stealing malware hidden in Mt. Gox data dump, researcher says

Recently leaked Mt. Gox data archive contains a malicious application that steals Bitcoin wallet files, a researcher from Kaspersky Lab said

All major browsers fall during second day of Pwn2Own hacking contest

Researchers demonstrate remote code execution exploits against Internet Explorer, Chrome, Firefox and Safari

samsung galaxyround

Developer: some Samsung Galaxy devices contain file access backdoor

A software program shipped with some Samsung mobile devices allows access to the file system through the modem, the developers said.

Adobe patches a critical vulnerability in Shockwave Player

The flaw could enable remote code execution attacks, the company says.

NSA's plans reportedly involve infecting millions of computers with surveillance malware

Leaked documents show the agency was planning to expand its infrastructure for active attacks since at least 2009.

adobe flash logo

Adobe patches two important security holes in Flash Player

The vulnerabilities don't allow remote code execution, but can be exploited to bypass other security restrictions

Over 160,000 WordPress sites used as DDoS zombies

Attackers exploited the pingback feature in WordPress to use 160,000 WordPress sites as DDoS proxies, researchers from Sucuri said

PCWorld News

Joomla receives patches for zero-day SQL injection vulnerability, other flaws

An exploit for the SQL injection vulnerability has been publicly available for over a month, said security researchers from Sucuri

802.11ac routers

Cisco patches vulnerabilities in small business routers and wireless LAN controllers

The flaws can be exploited to gain unauthorized access or cause denial-of-service conditions.

android devil malware

New crimeware tool Dendroid makes it easier to create Android malware, researchers warn

The tool can be used to add malicious functionality to legitimate applications, researchers from Symantec said.

Withdrawal vulnerabilities enabled bitcoin theft from Flexcoin and Poloniex

The flaws allowed hackers to overdraw accounts on the two websites without being detected.

TP-Link Archer AC1900

Attack campaign compromises 300,000 home routers, alters DNS settings

Attackers have used a variety of techniques to exploit known vulnerabilities in router models from different manufacturers.

Mozilla accepting whitelist requests for Firefox's coming plug-in block

Developers will need to present compelling arguments for getting their plug-ins on the whitelist, Mozilla said