Lucian ConstantinReporter, IDG News Service, IDG News Service

Lucian Constantin writes about information security, privacy and data protection.

PCWorld News

BlackShades users targeted in 16-country law enforcement action

Ninety-seven people were arrested worldwide for selling, buying or using the Trojan program

fake windows store apps

More fake antivirus programs, browsers found in Google Play and Windows Phone Store

Mobile app stores lack the necessary mechanisms to prevent such scams, researchers from Kaspersky Lab said

Spam: Earn $1,000,000

New 'malvertisements' need to be stopped now, Senate report says

The online ad industry should offer better protections against malware-ladedn ads that can threaten your computer without your knowledge, the U.S. Senate says.

PCWorld News

Microsoft's .NET Framework security updates further effort to phase out RC4 encryption

The company advises customers to stop using the RC4 cipher in TLS connections because of known weaknesses in the algorithm

Adobe patches critical flaws in Reader, Acrobat, Flash Player, and Illustrator

All of the security updates address remote code execution vulnerabilities

eye spy

Facebook encourages email providers to deploy STARTTLS encryption to block spy agencies

As more email servers support encryption the value increases for everyone, researchers from Facebook said

PCWorld News

Estonian electronic voting system vulnerable to attacks, researchers say

International research team finds insecure operational procedures and fundamental weaknesses in Estonian Internet voting system

Warning: Voice phishing campaign targets customers at dozens of banks

Cybercriminals used a combination of SMS and voice phishing techniques to obtain debit card details from bank customers

PCWorld News

Siemens patches Heartbleed in popular SCADA system

Some of the company's other products are still vulnerable

Malware virus

Sefnit click fraud malware drops Tor for SSH, Facebook researchers say

The malware program that flooded the Tor network with new clients last year is back, but now uses SSH for command and control

adobe flash logo

Adobe patches actively exploited vulnerability in Flash Player

The vulnerability was used in attacks against users in Syria, but will likely see wider exploitation, Kaspersky Lab researchers said.

PCWorld News

Emergency update for Apache Struts fixes incomplete patch for critical flaw

The previous patch did not block an attack vector that could lead to remote code execution in certain environments

Google speeds up encrypted Web communications in Chrome on Android

The company is pushing for widespread support for faster encryption algorithms on mobile and wearable devices

Mozilla to strengthen SSL certificate verification in Firefox

The software maker will pay US$10,000 for any critical vulnerability found in its new certificate verification code

Mac OS X

Apple users put at risk by 3-week delay between OS X and iOS patches, researchers say

IOS users were kept vulnerable for three weeks to known security issues previously patched in Safari for OS X, a former Apple employee said.