Stories by Jeremy Kirk

Google+

How to figure out if a data breach is a hoax

The notoriety that comes with taking credit for a data breach is alluring. Declaring a successful data breach can suddenly bring a lot of attention, which is why posting bogus data is attractive.

Gigamon says it can analyze attacker SSL traffic without hitting performance

Encrypting data traffic is mandatory for safeguarding information. But when attackers use encryption to mask their activity, it can be hard for enterprises to figure out what they're stealing.

Clues point to Russia in long-running spying campaign

Russia is likely behind a long-running computer spying campaign, although the stealthy attacks leave fewer clues than other state-sponsored attacks, according to a new report from FireEye.

'ScanBox' keylogger targets Uyghurs, US think tank, hospitality industry

A diversification of targets for a clever keylogging attack suggests that several hacking groups may be using the "ScanBox" framework, which spies on users without installing malicious software.

Tor Project flags Russian 'exit node' server for delivering malware

The Tor Project has flagged a server in Russia after a security researcher found it slipped in malware when users were downloading files.

The 'Backoff' malware linked to data breaches is spreading

The number of computers in North America infected by the Backoff malware, which is blamed for a string of payment card breaches, has risen sharply, according to research from network security company Damballa.

Adobe begins encrypting user data collected from Digital Editions app

Adobe Systems said it is now encrypting data it collects about certain e-books after facing criticism earlier this month for not protecting the data.

Apple to stop SSL 3.0 support for push notifications soon

Apple will stop support next week for an encryption protocol found to contain a severe vulnerability, the company said on Wednesday.

Symantec sees rise in high-traffic DDoS attacks

A type of distributed denial-of-service attack, DNS amplification, has risen sharply, according to new research from Symantec.

Microsoft discloses zero-day flaw, publishes quick fix

Microsoft has published a temporary fix for a new zero-day flaw that affects nearly all versions of Windows and is currently being exploited via PowerPoint.

Apple's Yosemite OS shares Spotlight search terms by default

Apple is being called out for how it shares desktop and Web searches in its latest desktop operating system, Yosemite.

China again blames US for disrupted cybersecurity talks

China claimed on Sunday the U.S. has derailed cybersecurity cooperation between the two countries and that it doesn't tolerate hacking.

Dropbox used for convincing phishing attack

Dropbox's file storage service was used for a tricky phishing attack, although the service was quick to shut down it down, according to Symantec.

Hackers strike defence companies through real-time ad bidding

A major change this year in how online advertisements are sold has been embraced by hackers, who are using advanced ad-targeting capabilities to precisely deliver malware.

Drupal releases patch for severe SQL injection flaw

Drupal has released a patch for a highly critical flaw in its content management system, which could allow rogue code to run.