Lucian ConstantinRomania Correspondent, IDG News Service

Lucian Constantin writes about information security, privacy, and data protection for the IDG News Service.

PCWorld News

Critical Java updates fix 19 vulnerabilities, disable SSL 3.0

Future Java 7 security patches will not be publicly available so users should migrate to Java 8

PCWorld News

Oracle to fix 167 vulnerabilities, including serious backdoor-like flaw in E-Business Suite

The E-Business Suite vulnerability can give attackers complete control over databases that store sensitive business information

PCWorld News

Web-based exploits on the decline, but users still slow to patch

Attackers are no longer focusing on Java vulnerabilities and are increasingly looking at other targets, like Silverlight

PCWorld News

Report: NSA not only creates, but also hijacks, malware

Documents leaked by Edward Snowden show the NSA hijacks botnets and computers infected with malware by other intelligence agencies

8 securitytips primary 100024721 large

Google reveals third unpatched Windows zero-day vulnerability in a month

Google is sticking to its 90-day disclosure deadline, despite criticism by Microsoft.

cookies

This ad company is using Verizon's unstoppable supercookies to track you

An advertising company uses the unique identifier headers added by Verizon to Web traffic to recreate tracking cookies deleted by users

cryptowall

CryptoWall ransomware is back with new version after two months of silence

CryptoWall 3.0 uses both the Tor and I2P anonymity networks for increased stealthiness.

Adobe patches remote code execution and keylogging flaws in Flash Player

Some of the vulnerabilities allow attackers to take full control of users' systems

painter2015 01

Corel software vulnerabilities let attackers execute malicious code on your PC

Malicious DLLs will be executed if stored in the same directory as media files opened with the affected programs, researchers said.

PCWorld News

North Korean official news agency site serves malware

The site hosts malware that masquerades as a Flash Player installer, security researchers found

PCWorld News

OpenSSL patches eight new vulnerabilities

The flaws are of moderate and low severity, but server admins should still update

Asus RT-AC87U

Exploit allows Asus routers to be hacked from local network

Users should install firmware updates as soon as they become available and should block untrusted devices on their networks

apple 2014 4

Apple blocks tool that brute-forces iCloud passwords

The tool allowed attackers to try a large number of passwords for Apple ID accounts

malware primary

Watch out! Macro-based malware is making a comeback

Attackers bypass defenses aganst macros with social engineering to install malware.

PCWorld News

Moonpig jeopardizes data of millions of customers through insecure API

The company failed to fix a security flaw reported over a year ago, a developer said