Lucian ConstantinReporter, IDG News Service, IDG News Service

Lucian Constantin writes about information security, privacy and data protection.

malware_piracy

Maliciously crafted files can disable Microsoft's security products

A vulnerability in the engine used by many Microsoft antimalware products can lead to a persistent denial-of-service condition

PCWorld News

UK student develops antidote for first Android file-encrypting ransomware

A hardcoded encryption key allows recovering files held hostage by the Simplocker Android malware

PCWorld News

Hacked Synology NAS systems used in high-profit cryptocurrency mining operation

A hacker earned over $600,000 by infecting network-attached storage devices with Dogecoin mining malware, Dell SecureWorks researchers said

Popular websites still vulnerable to OpenSSL hijacking attack

A known critical vulnerability in OpenSSL can be exploited on over 20,000 of Internet's top 155,000 SSL sites, a researcher from Qualys said

CloudFlare offers free protection against denial-of-service attacks to public interest sites

Project Galileo will help political and artistic websites resist censorship attempts that use distributed denial-of-service techniques

malware 0 100257425 orig

Nasty mobile banking Trojan gets ransomware features, starts targeting U.S. users

A new variant of the Svpeng malware locks Android devices and displays fake warnings from the FBI, researchers from Kaspersky Lab said.

Zeus Trojan alternative created from scratch hits the underground market

Built-in extensibility could help a new Trojan program called Pandemiya see wider distribution despite its high price, researchers say.

PCWorld News

Amazon AWS continues to use TrueCrypt despite project's demise

Importing and exporting data from Amazon Simple Storage Service requires TrueCrypt

antivirus security

One-click test finds Gameover Zeus infections on PCs

Researchers from F-Secure created a Web page to test if computers are infected with the Gameover Zeus Trojan program.

Hackers behind iPhone ransom attacks arrested in Russia

A man and a teenaged boy are accused of using phishing and social engineering attacks to hijack Apple IDs and lock iOS devices

PCWorld News

Many servers expose insecure out-of-band management interfaces to the Internet

Design and implementation flaws in the Intelligent Platform Management Interface puts many servers at risk, security researcher says

PCWorld News

New OpenSSL vulnerability puts encrypted communications at risk of spying

The flaw allows man-in-the-middle attackers to decrypt traffic between clients and servers that use OpenSSL

android devil malware

Trojan app encrypts files on Android devices, demands ransom

It's the first Android ransomware threat with file-encrypting abilities, researchers from ESET said

PCWorld News

Hackers distribute banking malware through Buffalo site in Japan

Attackers managed to replace 10 legitimate files on the hardware manufacturer's site with malware-ridden versions

ISPs should quarantine infected computers, researchers say

Forcing users to clean their infected computers on an ongoing basis would be more disruptive to cybercriminals than botnet takedowns, some security researchers say.