Stories by Jeremy Kirk

Google+

Avira wins German case over adware blocking

A lawsuit alleging that security software from Avira improperly blocked downloads of a software bundle that presented itself primarily as an Angry Birds-style game has been dismissed.

Cisco warns of default SSH keys shipped in three products

Cisco Systems said on Thursday it released a patch for three products that shipped with default encryption keys, posing a risk that an attacker with the keys could decrypt data traffic.

Magento e-commerce platform targeted with sneaky code

Attackers are using a sneaky method to steal payment card data from websites using Magento, eBay's widely used e-commerce platform.

Florida telemarketer, under FTC watch, suffers data breach

A Florida-based computer tech support call center has suffered a data breach, with customer records being abused by fraudsters trying to get access to online bank accounts.

NZ ISPs back down on anti-geoblocking support

A tool to watch regionally restricted video content will no longer be offered in New Zealand, ending a lawsuit that could have clarified the legality of such services in the country.

Geoblocking question unresolved after New Zealand lawsuit ends

A tool to watch regionally restricted video content will no longer be offered in New Zealand, ending a lawsuit that could have clarified the legality of such services in the country.

Swedish man sentenced for powerful Blackshades malware

The creator of a tool that was used to steal data from a half-million computers will go to prison for close to five years, the U.S. Department of Justice said Tuesday.

RubyGems DNS flaw now patched after second try

A revised patch has been released for a flaw in the distribution platform for Ruby applications, RubyGems, which could be used to deliver malware to someone trying to download a program.

How encryption keys could be stolen by your lunch

Israel-based researchers said they've developed a cheaper and faster method to pull the encryption keys stored on a computer using an unlikely accomplice: pita bread.

LinkedIn says private bug bounty program works for it better

LinkedIn plans to continue closely vetting researchers for its bug bounty rewards program, saying it reduces the number of distracting erroneous and irrelevant reports.

Free SSL/TLS certificate project moves closer to launch

Let's Encrypt, a project aimed at increasing the use of encryption across websites by issuing free digital certificates, is planning to issue the first ones next month.

How a bad keystroke can lead you to SpeedUpKit 'scareware'

Dozens of misspelled domain names that spoof major brands are leading unsuspecting PC users to a questionable tune-up application called SpeedUpKit.

Duqu 2.0 used digital certificates belonging to Foxconn

A deeper look into the latest version of malware known as Duqu shows it used digital certificates from prominent contract manufacturer Foxconn Technology Group to help mask its activity.

With payroll in arrears, online antivirus seller shuts doors

The sudden shutdown of a computer tech support call centre has left some of its employees wondering if they will be paid.

OpenSSL releases several patches but none for serious issues

The OpenSSL project has released several patches for moderate flaws, including an additional defense against the Logjam vulnerability revealed last month.