Lucian ConstantinRomania Correspondent, IDG News Service

Lucian Constantin writes about information security, privacy, and data protection for the IDG News Service.

PCWorld News

Can't keep this bad boy down: ZeroAccess botnet back in business

After a six-month break the ZeroAccess botnet resumes click-fraud activity

ghost

Critical 'Ghost' Linux flaw can be exploited through WordPress, other PHP apps

Some Web applications written in PHP call a vulnerable glibc function, potentially opening the door to attacks.

Mozilla puts old hardware to new use running Tor relays

The organization opted for running middle relays, although exit relays would have probably helped the anonymity network more.

PCWorld News

The end for 1024-bit SSL certificates is near, Mozilla kills a few more

Website owners still using 1024-bit SSL certificates should replace them with 2048-bit ones

blackphone 100248424 orig

Blackphone's super-secure communications app had serious flaw

A vulnerability in the bundled encrypted messaging app would have allowed attackers to execute malicious code on the device

D-Link DIR-880L

DNS hijacking vulnerability affects D-Link DSL router, possibly other devices

A vulnerability in ZynOS could spell trouble for users of routers from D-Link, TP-Link, ZTE and other manufacturers, a researcher said.

hacker hand

Source code reveals link between NSA and Regin cyberespionage malware

Security researchers found a strong connection between Regin and a keylogger used by the Five Eyes intelligence alliance

Adobe pushes critical Flash Player update to fix latest zero-day

Users with automatic updates enabled in Flash Player have already started receiving the new patch

PCWorld News

Thousands of U.S. gas stations exposed to Internet attacks

Over 5,000 tank gauges that are used to monitor fuel levels and potential spills are accessible from the Internet without a password

Adobe fixes just one of two actively exploited zero-day vulnerabilities in Flash Player

Internet Explorer and Firefox users with Flash Player enabled remain at risk.

megachat test

Kim Dotcom takes on Skype with end-to-end encrypted video calling service

MegaChat opens up for public testing

PCWorld News

Atlassian fixes critical vulnerability in development collaboration products

The flaw can be exploited to execute malicious Java code on servers

PCWorld News

Attackers are exploiting a zero-day vulnerability in Flash Player

The exploit was included in the Angler exploit kit, a security researcher reported

PCWorld News

Critical Java updates fix 19 vulnerabilities, disable SSL 3.0

Future Java 7 security patches will not be publicly available so users should migrate to Java 8

PCWorld News

Oracle to fix 167 vulnerabilities, including serious backdoor-like flaw in E-Business Suite

The E-Business Suite vulnerability can give attackers complete control over databases that store sensitive business information