Lucian ConstantinReporter, IDG News Service, IDG News Service

Lucian Constantin writes about information security, privacy and data protection.

PCWorld News

Israeli security startup firm Hexadite automates cyber incident response

The company claims its product reduces cyber incident response times by up to 95 percent

Microsoft resumes emailed security notifications days after announcing its demise

The next security notifications will go out Thursday ahead of monthly security patches

malware 0 100257425 orig 100309194 large

New malware program hooks into networking APIs to steal banking data

The Emotet malware can sniff information even from HTTPS connections, researchers from Trend Micro said.

android devil malware

Rare text message worm targets Android devices

The new Selfmite Android malware spreads by sending text messages with a malicious link to the device owner's contacts

PCWorld News

VMware catches up with some Apache Struts patches

The company updates the version of Struts included in its vCenter Operations Management Suite product.

PCWorld News

Researchers bypass PayPal's two-factor authentication system

An API and mobile app loophole allowed access to 2FA-enabled accounts with only a user name and password, researchers from Duo Security said

PCWorld News

Fewer NTP servers can be abused to amplify DDoS attacks, but threat remains

Despite visible progress 2,000 servers with large amplification factors remain, a security vendor reports

Researchers expect surge of rootkits targeting 64-bit PCs

Rootkits are again on the rise with the number of new samples reaching levels not seen since 2011, a McAfee report said

PCWorld News

New Havex malware variants target industrial control system and SCADA users

Attackers compromised ICS/SCADA vendor sites and altered software downloads to distribute the malware, researchers from F-Secure said

PCWorld News

Ad network compromise led to rogue page redirects on Reuters site

The Syrian Electronic Army compromised a third-party widget to redirect some Reuters.com visitors to a defacement page

PCWorld News

Tool aims to help enterprise IT manage 'honeypot' hacker decoys

Developers of the Modern Honey Network want to simplify deployment and monitoring of these threat-intelligence systems

Android 4.4.4 fixes OpenSSL hijacking vulnerability

A new version of Android for Nexus devices is primarily a security update that patches the bundled OpenSSL library

PCWorld News

Hacker puts 'full redundancy' code-hosting firm out of business

CodeSpaces.com shut down after a hacker gained access to its Amazon EC2 account and deleted most data, including backups

Nokia blackmailed in 2007 after digital key stolen

Someone blackmailed Nokia in 2007 by threatenting to leak a digital key the company used to sign Symbian applications, a news report says.

malware_piracy

Maliciously crafted files can disable Microsoft's security products

A vulnerability in the engine used by many Microsoft antimalware products can lead to a persistent denial-of-service condition