Don't-Miss Firewall Stories

Tool allows Mac OS X hackers with root access to easily extract keychain data

A new tool allows Mac OS X attackers with root OS access to easily steal the keychain password data of logged in users and reinforces the dangers of granting...

Security researchers to present new 'CRIME' attack against SSL/TLS

Two security researchers claim to have developed a new attack that can decrypt session cookies from HTTPS (Hypertext Transfer Protocol Secure) connections.

ICS-CERT Warns of SSL Security Flaw in RuggedCom Industrial Networking Devices

Industrial Ethernet switches and other devices produced by industrial networking equipment manufacturer RuggedCom contain a vulnerability that could be exploited...

Web Applications Are Attacked One out of Three Days, Report Says

A typical Web application is the target of an attack at least one in three days on average, according to a report released by data security firm Imperva.

Tool Released at Black Hat Contains 150 Ways to Bypass Web Application Firewalls

A tool for testing if Web application firewalls (WAFs) are vulnerable to around 150 protocol-level evasion techniques was released at the Black Hat event.

Mobile and Web Security Will Be Major Topics at Black Hat

Security researchers are expected to disclose new vulnerabilities in near field communication (NFC), mobile baseband firmware, HTML5 and Web application...

Check Point Plans to Release Document Security Software

Check Point Software Technologies plans to introduce document security software that encrypts and controls access to files across an organization's various...

Cyberoam Fixes SSL Snooping Hole in Network Security Appliances

Network security hardware manufacturer Cyberoam issued an over-the-air (OTA) update for its unified threat management (UTM) appliances in order to force the...

Researchers Devise Practical Key Recovery Attack Against Smart Cards, Security Tokens

A team of cryptographic researchers claim to have developed an attack method that can be used to recover secret keys in an acceptable time frame from...

LinkedIn Hit With Lawsuit Over Massive Data Breach

LinkedIn has been hit with a potential class-action lawsuit alleging it failed to meet "industry standard" security practices.

Researchers Set New Cryptanalysis World Record for Pairing-based Cryptography

Researchers from Fujitsu Laboratories, Japan's National Institute of Information and Communications Technology (NICT) and Kyushu University have set a new...

Flame Crypto Attack Was Very Hard to Pull Off, Security Researcher Says

The MD5 collision attack used by the creators of the Flame malware was significantly more difficult to pull off than an earlier attack that resulted in the...

European League of Legends Game Players Have Their Account Data Compromised

Hackers have stolen account data from the European servers of popular real-time strategy game League of Legends (LoL), the game's developer, Riot Games...