Stories by Jeremy Kirk

Google+

CloudFlare launches bug bounty program

CloudFlare started a bug bounty program on Monday, joining a host of companies that are turning to independent security researchers to spot bugs in their network.

Google patches Android icon permissions attack

Google has issued a patch for an attack that could lead an Android user to a phishing site, according to security vendor FireEye.

Akamai admits its OpenSSL patch was faulty, reissues keys

Akamai Technologies, whose network handles up to 30 percent of all Internet traffic, said Sunday a researcher found a fault in custom code that the company thought shielded most of its customers from the Heartbleed bug.

Akamai admits its OpenSSL patch was faulty, reissues keys

Akamai Technologies, whose network handles up to 30 percent of all Internet traffic, said Sunday a researcher found a fault in custom code that the company thought shielded most of its customers from the Heartbleed bug.

Tests confirm Heartbleed bug can expose server's private key

Four researchers working separately have demonstrated a server's private encryption key can be obtained using the Heartbleed bug, an attack thought possible but unconfirmed.

In Heartbleed's wake, Comodo cranks out fresh SSL certificates

Tens of thousands of new digital certificates have been issued by Comodo in the wake of the "Heartbleed" security flaw, which has put Internet users' data at risk.

Stung by file-encrypting malware, researchers fight back

Jose Vildoza's 62-year-old father was using his old Windows computer when a warning in broken English flashed on the screen: your files have been encrypted.

1

'Heartbleed' bug in OpenSSL puts encrypted communications at risk

Computer security experts are advising administrators to patch a severe flaw in a software library used by millions of websites to encrypt sensitive communications.

'Heartbleed' bug in OpenSSL puts encrypted communications at risk

Computer security experts are advising administrators to patch a severe flaw in a software library used by millions of websites to encrypt sensitive communications.

Indosat routing error impacts few but hits Akamai, Chevron

A routing error by one of Indonesia's largest telecommunications providers on Wednesday made it briefly appear it controlled a large swath of the Internet, according to monitoring firm Renesys.

Cryptocat sticks to openness despite grief over audits

People in the security community often criticize the code behind Cryptocat, an open-source encrypted instant messaging project.

Sality malware, growing old, takes on a new trick

A botnet that was slowly shrinking has taken on a new trick: brute-forcing routers set to easy-to-guess credentials.

Smaller banks warned of hackers raising ATM withdrawal limits

Smaller financial institutions have been warned to look out for attacks that aim to increase the withdrawal limit on customer payment cards for fraud purposes.

Mistake in ransomware program leaves decryption key accessible

A malicious software program that encrypts a person's files until a ransom is paid has a crucial error: it leaves the decryption key on the victim's computer.

Banks withdraw claim against Target over break-in

Two banks that took legal action against Target over its recent data breach have withdrawn their claims, apparently due to an erroneous allegation against a security vendor also named in the suit.

Sign up now to get free exclusive access to reports, research and invitation only events.

Computerworld newsletter

Join the most dedicated community for IT managers, leaders and professionals in Australia