Stories by Jeremy Kirk

Google+

LinkedIn says private bug bounty program works for it better

LinkedIn plans to continue closely vetting researchers for its bug bounty rewards program, saying it reduces the number of distracting erroneous and irrelevant reports.

Free SSL/TLS certificate project moves closer to launch

Let's Encrypt, a project aimed at increasing the use of encryption across websites by issuing free digital certificates, is planning to issue the first ones next month.

How a bad keystroke can lead you to SpeedUpKit 'scareware'

Dozens of misspelled domain names that spoof major brands are leading unsuspecting PC users to a questionable tune-up application called SpeedUpKit.

Duqu 2.0 used digital certificates belonging to Foxconn

A deeper look into the latest version of malware known as Duqu shows it used digital certificates from prominent contract manufacturer Foxconn Technology Group to help mask its activity.

With payroll in arrears, online antivirus seller shuts doors

The sudden shutdown of a computer tech support call centre has left some of its employees wondering if they will be paid.

OpenSSL releases several patches but none for serious issues

The OpenSSL project has released several patches for moderate flaws, including an additional defense against the Logjam vulnerability revealed last month.

Apple Mail flaw could pose risk to iCloud passwords

A security researcher says a vulnerability in Apple's mobile email application could be used to trick someone into divulging their iCloud password.

'Your PC may be infected!' Inside the shady world of antivirus telemarketing

Scotty Zifka was looking for a sales job. He started one in late May at a company called EZ Tech Support, a small inbound call center in an older building in northeast Portland, Oregon.

SweetCAPTCHA users complain of advertising pop-ups

Website owners are complaining that a free security tool started displaying unwanted advertising pop-ups to their visitors.

Mozilla doubles maximum bounty for Firefox flaws to US$7,500

Mozilla is giving a raise to security researchers who spot Firefox browser vulnerabilities, more than doubling its maximum reward for information on the most high-risk flaws.

Apple moves to six-digit passcode in iOS 9

Apple plans to require six-digit passcodes to unlock its latest mobile devices that use iOS 9, its forthcoming mobile operating system.

Security startup finds stolen data on the 'Dark Web'

Finding stolen data on the Internet is often the first sign of a breach, and a Baltimore-based startup says it has developed a way to find that data faster and more securely.

Facebook mandates stronger digital verification of apps

Facebook will require application developers to move later this year to a more secure type of digital signature for their apps, which is used to verify a program's legitimacy.

SourceForge stops ad bundling without permission

Code repository SourceForge said Monday it will stop including third-party offers without developers' consent into projects that are no longer maintained, a practice it briefly tried but was widely criticized.

Hola browser extension should be uninstalled, researchers say

Security researchers contend the developer of a popular browser extension has not fixed vulnerabilities they found, and are recommending users should get rid of it.

CIO
ARN
Techworld
CMO