security

Hackers have published source code that could be used to hack computers running Symantec's security program PCAnywhere. The move comes after the security firm refused to meet the hackers' demand for $50,000 in ransom. As we reported last month , the ... code behind a range of Symantec products was originally stolen in 2006. It appears most likely the theft came after Indian military officials demanded access to the code before accepting it for official use. Symantec may have learned of the theft only after hackers revealed they had it, earlier this year. Symantec said in January that several ... (view more)

Security firm Symantec is urging all Windows users to disable "PCAnywhere" (a remote-control software program) on their systems immediately. The concern to disable the product dates back to 2006, when Symantec's PCAnywhere source code was stolen, ... but has never appeared in the open until now. Symantec says users running old versions of PCAnywhere could have their systems easily hijacked. A security bulletin on their site says that even the latest edition of PCAnywhere (version 12.5) is "at an increased security threat," and have urged customers to disable the software and ... (view more)

Patch Tuesday for January 2012 was released this week by Microsoft and includes seven updates designed to fix eight Windows security vulnerabilities. One patch in particular fixes a serious Windows Media Player exploit. The flaw could allow a hacker ... to take remote control of a PC running Windows. For those who don't follow Microsoft security news, Patch Tuesday refers to the second Tuesday of every month -- the day on which the Redmond-based firm normally releases a series of software updates intended to fix known problems in its various programs. The majority of patches are usually for ... (view more)

A military and security intelligence firm that fell victim to a hacking attack has suffered another embarrassment, even while analysis reveals that hundreds of military and political officials had their digital details exposed by hackers. As ... reported last month , hackers struck Stratfor (or "Strategic Forecasting"), a Texas-based security consulting and analysis firm. They captured details of some 4,000 clients, cheekily using the stolen credit card information to make charitable donations. Stratfor customers recently received an email apparently sent by CEO, George Friedman, asking ... (view more)

Microsoft has published details of its next batch of security updates (known as Patch Tuesday), due to download to Windows machines automatically on Tuesday, November 8 via Windows Update. The only critical update in the batch affects newer rather ... than older editions of Windows. None of the security updates to be released next Tuesday are said to patch MS Word, which is currently being exploited by the Duqu virus (a major zero-day threat ). The entire update is a bit of a surprise, say critics, because it deals with just four groups of bugs -- a far cry from recent updates that have included ... (view more)

New reports are surfacing with details of the latest and what's considered to be one of the most dangerous Internet worms, dubbed "Duqu." It's said the worm can install and spread itself due to a security loophole in Microsoft Word. As reported last ... week, Duqu's programming code is very close to that of the Stuxnet worm that wreaked havoc back in 2010 . Stuxnet was a particularly sophisticated virus which infected Windows-based PCs, and in turn, attacked computers that controlled equipment in Iran's nuclear program to the point where it caused irreversible damage to equipment. So ... (view more)

The Federal Bureau of Investigation (FBI) has accused a 35 year old man of hacking Scarlett Johansson's cellphone and stealing photographs of the actress in a state of undress. Christopher Chaney, of Jacksonville, Florida, has been charged with ... several offenses after allegedly compromising the security of more than 50 people, including other celebrities. The offenses are believed to involve a string of entertainers, including singer Christina Aguilera, actress Mila Kunis, celebrity stylist Simone Harouche and jazz singer Renee Olstead. It's thought the attacks involved both direct access to ... (view more)

The theft of online security certificates by hackers thought to be from Iran may be even more serious than first thought. The stolen certificates include those for security agencies from the United States, United Kingdom and Israel. The security ... breach originates with DigiNotar, a Netherlands organization that produces Secure Sockets Layer (SSL) certificates which are used by webites. An SSL, for example, is used when home users connect to their banking web sites. Using the SSL certificate, information to and from the home PC to a bank website is encrypted and cannot be intercepted by a third ... (view more)

This past spring, Sony was hit by one of the most crushing hacker invasions in tech history. The hack, which penetrated Sony's PlayStation Network (PSN), acquired personal information associated with tens of millions of accounts, including stolen ... data included credit card information, addresses, and names. In all, it's estimated that the online attack cost Sony $171 million dollars. (Source: pcmag.com ) So, can hiring an official formerly tasked with preventing terrorism on U.S. soil help prevent devastating online attacks in the future? Sony, which just hired a former U.S. Department of ... (view more)

Microsoft is offering a huge reward to encourage tech savvy users to come up with new security ideas for its operating system. The company is running a contest for users to create "a novel runtime mitigation technology designed to prevent the ... exploitation of memory safety vulnerabilities." Put in simple terms, that means the winning entries have to halt malware that takes advantage of exploits in computer memory. An exploit of this nature is an extremely common source of security breach. It works by taking advantage of the fact that computer memory is used to serve multiple programs, often ... (view more)