- Welcome Guest
- Sign In
Providers of apps for mobile devices are just as responsible as other electronic commerce vendors in terms of protecting the privacy of customers. In a recent enforcement action, the Federal Trade Commission signaled that mobile apps fall within the agency's jurisdiction, and that it will not hesita...
Federal regulations designed to protect children's privacy cover the burgeoning mobile apps business as well as other online vehicles accessible through laptops or desktops. In fact, providers of mobile apps need to pay attention to the privacy impact not only of services offered specifically to chi...
The break-in and theft of security certificates from a Dutch authority brought home, once again, how vulnerable Web browsers can be to hackers pretending to be who they're not. The authority, DigiNotar, is one of many that issue security certificates for websites. The digital certificates tell a br...
H.R. 1981, a U.S. federal bill which apparently seeks to combat child pornography, has stirred up opposition from various lawmakers as well as civil rights groups. The proposed law, introduced in May and now under consideration in Congress, is the joint creation of Rep. Lamar Smith, R-Texas, chairma...
It's been another wild and crazy week for the security community. Scotland Yard arrested two suspected members of Anonymous and LulzSec Thursday. Meanwhile, the major players in the browser market -- Google, Microsoft and the Mozilla Foundation -- have chopped Dutch certificate DigiNotar off at the ...
Another global security mess is in the making, on the heels of the publication of thousands of sensitive security documents obtained by WikiLeaks. However, in this particular instance, WikiLeaks insists it didn't mean to do it. Last week, WikiLeaks reportedly made some 134,000 diplomatic cables avai...
If you thought the hacks by Anonymous and AntiSec were bad, boy, are you in for a revelation. This past week brings news that the Apache Web server -- the one that powers the majority of the Internet and most websites -- has a vulnerability that can be exploited with relatively little effort. The Ap...
The definition of "cybercrime" is ever changing, as is the severity of attacks. 2011 has already been labeled the "year of the data breach," and yet many of the breaches are not the typical SQL injection attacks or database hacks. Instead, criminals are using legitimate website functions to steal da...
Solid proof regarding the origins of high-profile international cyberattacks is typically elusive. However, when Western interests are targeted, suspicion often turns to China -- whether rightfully or otherwise. Those suspicions were again aroused recently, courtesy of government-controlled China Ce...
In a nod to users who have complained about Facebook's privacy settings for years, the social network announced new, simplified settings Tuesday that allow users to exercise greater control over what information is shared across the network. Going forward, users can choose a feature called "Profile ...
Mikko Hypponen has spent the past 20-plus years studying malicious software, including everything from "Brain" -- the first PC virus, dating back to 1986 -- all the way up to Stuxnet and today's most sophisticated global malware. He's widely considered one of the world's foremost experts on informat...
This past week saw considerable hacker activity: AntiSec released to the Internet 1 GB worth of emails and documents stolen from the account of VanGuard Defense Industries SVP Richard Garcia. A related hacker community, Anonymous, hacked into the servers of the BART Police Officers' Association. Ano...
It was once the case that computer viruses and other malicious software were written primarily by hobbyist hackers. Their motivations, for the most part, were simply bragging rights and the respect of their peers -- desirable rewards, to be sure, but certainly not the sole focus of any career. The r...
Two papers on mobile security were presented at the 20th USENIX Security Symposium, held in San Francisco recently. Both touch on mobile security, a topic that's become increasingly hot lately as security vendors warn that this may well be the year of the mobile hack. Other security issues include t...
Over the past few decades, most IT shops have followed a somewhat similar trajectory: Starting from a centralized model, computing resources, much like the cosmological Big Bang, have exploded outwards to become ever-more-distributed and decentralized. This makes sense given market dynamics. Comput...