Hacking

A study on Chinese hacking practices issued by U.S. security firm Mandiant sent shock waves Wednesday through the technology and business worlds. A large number of cyberattacks on American corporations, organizations and government agencies are coming from a building near Shanghai that houses, as on...

Chinese Foreign Ministry spokesperson Hong Lei reportedly said at a briefing on Tuesday that China's military was not involved in any recent cyberhacking. His comments were apparently in response to allegations in a new report by Mandiant. Among its many findings is the existence of a 12-story white...

SPOTLIGHT ON SECURITY

A Porous Perimeter Perplexes Security Pros

While it's a nasty pill to swallow for old-line security folks, the perimeter isn't what it used to be. The days when a company could hide behind its firewall and feel secure are gone. Pockets of resistance to that notion still exist, but the message is getting through to security pros. "It's a pain...

Apple, Microsoft and Adobe reportedly have been summoned by the Australian Parliament to explain why their products cost so much more in Australia than elsewhere. The tech trio was called by the House Committee on Infrastructure and Communications, which is overseeing an inquiry into why hardware an...

SPOTLIGHT ON SECURITY

Attack on Fed Exposes Weak Patch Maintenance

While many Americans watched the wrap-up of the Super Bowl Feb. 3, the band of hackers called "Anonymous" broke into a Web-facing server at the Federal Reserve and pilfered a list of some 4,000 people who work in the banking industry -- many of them ranking executives at banks and credit unions. Lat...

The European Union on Thursday announced a strategic plan designed to prevent and respond to cyberdisruptions and attacks. The heart of the plan: a requirement that all member states and key Internet enablers -- including some U.S.-based companies -- must report attacks. Web-based companies and crit...

An attempted antipiracy campaign came screeching to a halt when, after just four days, the Icelandic Film and Movie organization, SMAIS, took down its Facebook page. SMAIS apparently wanted to spur dialogue with Icelanders, but that backfired when Facebook users -- who were "fans" of the SMAIS page ...

The hactivist collective Anonymous announced via a tweet during last Sunday's Super Bowl that it had published a document dump including publishing private information tied to more than 4,000 U.S. bank executives. It included a spreadsheet containing login information and credentials, along with IP ...

Twitter has joined a rapidly growing list of U.S. companies to report a major cybersecurity incident. The social network admitted late last week that it was able to shut down a live attack, but not before hackers may have been able to access personal information on 250,000 users. The social network...

The New York Times reported on Thursday that it was the victim of a four-month cyberattack that originated in China. The intrusions may have been part of a shift by Chinese hackers to apply the same sophisticated infiltration techniques on foreign media that have been used in recent years to steal d...

An entrepreneurial hackerl has found an exploit for a new zero-day vulnerability in Java and reportedly has sold it to at least two buyers at $5,000 a pop. News of the latest vulnerability follows on from a critical bug that emerged last week for which Oracle rushed out a fix over the weekend. The n...

Video games strive to be realistic, but this was probably too real. Two game developers from the Czech Republic were released on bail after being jailed for taking photos and videos of military bases and installations in Greece. The duo, Ivan Buchta and Martin Pezlar, work for Bohemia Interactive. T...

Oracle's Java Fix Fizzles

Oracle released a fix over the weekend for two serious vulnerabilities in Java, but this doesn't seem to have improved matters much. The vulnerabilities, which affect Web browsers using Java 7 plugins, let attackers remotely exploit target systems without needing a username or password. The U.S. Com...

SPOTLIGHT ON SECURITY

100 Million Systems Vulnerable to Java Flaw

A zero-day flaw in Oracle's Java programming language could make as many as 100 million computers connected to the Internet vulnerable to attack by cybercriminals. The threat posed by the Java vulnerability was considered so serious that the U.S. Department of Homeland Security urged computer users ...

DHS is urging computer users to disable or uninstall Java due to a serious flaw in JRE 7. The DHS' Computer Emergency Readiness Team warned Thursday evening that it was being exploited in the wild and could allow an attacker to execute arbitrary code on vulnerable systems. CERT recommended that Java...

Technewsworld Channels