security

Security firm Symantec says it has found a sinister and highly sophisticated piece of malware, which has somehow managed to evade security experts for more than six years. Dubbed 'Regin', the malware showcases high levels of technical competence, ... suggesting that it was likely developed by cyber espionage experts. "The development and operation of this malware would have required a significant investment of time and resources, indicating that a nation state is responsible," Symantec said in a recent white paper on the subject. "Its design makes it highly suited for persistent, ... (view more)

Microsoft has patched a security vulnerability that somehow evaded detection for roughly twenty years. The bug has reportedly existed in every single version of the Windows operating system since Windows 95. According to reports, the bug can allow a ... hacker to execute code remotely when a user visits a malicious website. IBM security expert Robert Freeman says the bug is related to a flaw in VBScript, which first debuted with Internet Explorer 3.0 in the late 1990s. Freeman says that the bug remains invulnerable to Microsoft's anti-exploitation tools, otherwise known as the Enhanced ... (view more)

The Home Depot recently revealed that its systems had been hacked, leaving approximately 56 million customer credit cards and 53 million email addresses vulnerable to cybercriminals. Now, the retailer is apparently blaming Microsoft's Windows ... operating system (OS) for its security vulnerabilities, and has reportedly switched many top-ranking employees to Macintosh computers and iPhones. The Home Depot announced additional findings of its security breach on November 6, 2014. In the days that followed, customers whose data was affected received an email from the company, which read: " ... (view more)

Industry analysts at Gartner have released their list of the top trends in information technology (IT) for 2015. The general theme appears to be a growing -- and perhaps troubling -- reliance on web-connected devices and the cloud. Topping Gartner's ... list is the 'computing everywhere' concept, also known as ubiquitous computing . The research firm believes 2015 will be about expanding access to computing capabilities, from placing touchscreens in connected cars , to washing machines and dryers. To many, it's an exciting trend that will allow people unprecedented access to their devices ... (view more)

A new report from a government auditor suggests that the United States Healthcare.gov web site is missing basic security features. The most alarming findings include ineffective cyber security controls, such as resilient passwords and stable ... security patching. Healthcare.gov represents the central hub of the Obama administration's Affordable Care Act, which is intended to offer U.S. citizens an easier method of finding and acquiring health insurance. However, since the site's launch in October 2013 it has suffered from stability problems, with issues lingering well into 2014. ... (view more)

Apple has denied any responsibility for the recent theft and publication of compromising photographs of celebrities. But some analysts say the pictures were vulnerable thanks to a combination of Apple's technical setups, plus the easy availability ... of password cracking software designed specifically for law enforcement authorities. Pictures and videos of famous females such as Jennifer Lawrence, Kirsten Dunst and Kate Upton began circulating earlier this week after being posted at controversial website 4chan. The US Federal Bureau of Investigation (FBI) is said to be investigating, but it ... (view more)

Facebook says there's no truth to claims that its Messaging app is spying on smartphone users. It says the confusion over wiretapping stems from security measures on iPhones and Android handsets. The issue involves the tool for Facebook users to ... exchange messages with one another. Whereas computer users are able to message other members through the Facebook website, this same feature is no longer supported in the official Facebook app that runs on mobile devices such as smartphones and tablets. Instead, these users must install and run a separate app called Messenger. The Messenger app ... (view more)

A new survey suggests that the majority of hackers carry out their work simply because they find it fun and thrilling. The survey also found that only a small portion of hackers do their work in pursuit of financial gain. The survey was carried out ... by Washington-based security firm Thycotic, which asked hackers attending last week's Black Hat conference (held in Las Vegas, Nevada) what motivated them. More than half of the respondents, or 51 per cent, said they hack for the "fun" and "thrill" of it. Just 19 per cent, or about one in five of the hackers surveyed, said ... (view more)

A Russian gang is believed to have stolen more than a billion online passwords. But the security firm that discovered the breach has also caused controversy over its handling of the situation, including paid-for services to deal with the breach. ... Hold Security of Milwaukee discovered and publicized the breach. The company is legitimate, and its previous claims of breaches have checked out: it was responsible for detecting a massive breach at Adobe last year. The company says it discovered that a Russian group named CyberVor (which translates as cyber-thief) has gathered together data from 420, ... (view more)

Microsoft is planning to release a slew of security fixes for Internet Explorer (IE) -- suggesting the web browser continues to face a torrent of security threats . Nevertheless, a recent study shows that Internet Explorer maintains a vice-like grip ... on the web browser market. Yesterday, Microsoft released a Security Bulletin Advance Notification for July 2014 , with plans to ship a total of six security updates to customers next Tuesday (July 8, 2014). The updates will patch security vulnerabilities present in every version of Internet Explorer and all supported editions of the Windows ... (view more)