security

Cybercrime is often likened to a never-ending cycle: just when a security company believes they have found a way to combat one malware-installation method, hackers come along and find a new ways to attack a computer. Thus, it should come as little ... surprise that there is a new hack that attacks network card firmware: software specifically designed to control the network card. This innovative hacking technique (dubbed the "Jedi Packet Trick") works by sending infectious network packets to the network's firewall , which needs to be running a vulnerable network card. Once an infected packet is ... (view more)

Microsoft has officially released a patch addressing a widely-reported critical zero-day flaw in its Internet Explorer browser. The patch addresses not just one or two critical issues, but ten in total, leading security experts to emphasize the ... importance in having all Internet Explorer users upgrade to Internet Explorer 8. Yesterday's emergency patch release is special for Microsoft, which typically reserves the second Tuesday of every month for its monthly updates. However, since a critical zero-day flaw in Internet Explorer versions 6 and 7 eluded the last Patch Tuesday release, Microsoft ... (view more)

Two hackers took just two minutes to break into a PC running Windows 7 64-bit with Internet Explorer 8 at a security conference earlier this week. The ethical hacking took place at the CanSecWest security event in Vancouver, which hosts an annual ... contest named "Pwn2Own." The name is taken from an online corruption of "own" in two senses: whomever is first to take control of a system wins the relevant hardware, plus between $5,000 and $10,000 in cash. (Source: darkreading.com ) Windows 7 DEP and ASLR Hacked, Disabled In the contest, the hackers were not able to physically access the ... (view more)

Microsoft is reminding users that support for several editions of Windows will end beginning April 13, 2010. It will mean no more security updates, though users can easily upgrade to supported editions without charge. The affected editions are ... Windows XP with the second service pack (SP) and Vista with no service pack applied. In other words, if you haven't already installed at least Windows XP Service Pack 3 or Vista Service Pack 1, your computer will be exceedingly vulnerable to security exploits (and hackers). Service packs are collections of security and software updates which are ... (view more)

Google was one of several companies attacked over the Christmas period in an exploit of an Internet Explorer zero-day flaw that has since been dubbed ' Operation Aurora '. And now, it seems that the hunt for the individuals responsible for hacking ... into Google's network in China is heating up. Two educational establishments have denied any connection, but investigators believe they've tracked down the man who wrote the code used in the attack. Computer Security Schools Under Suspicion Last week the New York Times quoted sources saying the attacks had been linked to the Lanxiang Vocational ... (view more)

The Microsoft " browser ballot ," which is meant to promote fair competition amongst web browsers by offering choices aside from Internet Explorer (IE), will debut via an update March 1. However, at least one security company is warning that the ... process could open doors for hackers to attack. For those unaware of the browser ballot, it's Microsoft's response to accusations by the European Union that the software company's traditional bundling of Internet Explorer with its Windows operating systems was a violation of antitrust laws. Thus, Microsoft agreed that it would eventually offer users ... (view more)

A recent security threat has already infected about 74,000 computers owned by 2,500 companies and government organizations around the world. That's not a huge number, but the way in which the new "Kneber" botnet works should have most folks ... concerned. The Kneber botnet was discovered in late January by security firm NetWitness. The malicious botnet employs the infamous ZeuS Trojan to swipe login and password data once a system has become compromised. Botnet 'Most Dangerous' on the Web Today At this time, the Kneber botnet has yet to be put out of service. Although it was traced to Germany, ... (view more)

A new ethical hacking contest, called "Pwn2Own" is set to get under way this coming March 24, 2010, with awards of $100,000 in prize money. Predictions on which operating systems will be first to fall prey to hackers are already being heard; ... according to the event's organizer, the speediest, easiest hack will almost surely be on Mac's new Snow Leopard. Fundamental Beliefs: Mac Vs PC Security For years, it's been said that one of the main reasons why consumers have purchased Macs is because of the popular belief that Mac computers are more secure than PCs running MS Windows. Many ... (view more)

According to reports, Google and the National Security Agency (NSA) are teaming up in the name of cyber security. Under the agreement, the NSA would help Google defend against attacks like the one that targeted the search company (along with Adobe ... and several other firms) from China several weeks ago . Google announced publicly that their systems had been hacked beginning in December . The Google intrusions targeted Google source code and extended to more than 30 other large tech, defense, energy, financial and media companies. Gmail accounts of human rights activists in Europe, China and the ... (view more)

It's still a few days till Valentine's, but already Microsoft has provided its February security gift for Windows users. In yesterday's Patch Tuesday release, the Redmond-based software firm has unveiled fixes for 26 vulnerabilities, almost ... one-fifth of which are marked "critical". Critical Fixes for Windows, MS Office Suite The recent patches address flaws in Microsoft's Windows operating system and its Office software suite. Five of the vulnerabilities have been ear-marked "critical," Microsoft's highest threat rating, and another seven "important". One is considered "moderate". Across the ... (view more)