Stories by Jeremy Kirk

Google+

Apple security checks may miss iWorm malware

Apple's security technologies for Mac OS X may still miss iWorm, a piece of malware discovered in late September that infected thousands of computers.

Flaw in UK Visa cards could ring up a very large fraud

Visa's contactless payment cards will approve very large transactions in currencies other than the British pound due to a flaw in a protocol, U.K. researchers contend.

Adobe's e-reader software collects less data now, EFF says

Tests on the latest version of Adobe System's e-reader software shows the company is now collecting less data following a privacy-related dustup last month, according to the Electronic Frontier Foundation.

Google project aims to preserve privacy when collecting software stats

Google is applying a surveying technique from the 1960s to a project that aims to collect data about users' computers without potentially compromising their privacy.

Facebook gives away homebrewed OS monitoring tool

Facebook has released an open-source tool for monitoring operating system state changes across very large infrastructures, which could help engineers quickly diagnose performance and security issues.

How to figure out if a data breach is a hoax

The notoriety that comes with taking credit for a data breach is alluring. Declaring a successful data breach can suddenly bring a lot of attention, which is why posting bogus data is attractive.

Gigamon says it can analyze attacker SSL traffic without hitting performance

Encrypting data traffic is mandatory for safeguarding information. But when attackers use encryption to mask their activity, it can be hard for enterprises to figure out what they're stealing.

Clues point to Russia in long-running spying campaign

Russia is likely behind a long-running computer spying campaign, although the stealthy attacks leave fewer clues than other state-sponsored attacks, according to a new report from FireEye.

'ScanBox' keylogger targets Uyghurs, US think tank, hospitality industry

A diversification of targets for a clever keylogging attack suggests that several hacking groups may be using the "ScanBox" framework, which spies on users without installing malicious software.

Tor Project flags Russian 'exit node' server for delivering malware

The Tor Project has flagged a server in Russia after a security researcher found it slipped in malware when users were downloading files.

The 'Backoff' malware linked to data breaches is spreading

The number of computers in North America infected by the Backoff malware, which is blamed for a string of payment card breaches, has risen sharply, according to research from network security company Damballa.

Adobe begins encrypting user data collected from Digital Editions app

Adobe Systems said it is now encrypting data it collects about certain e-books after facing criticism earlier this month for not protecting the data.

Apple to stop SSL 3.0 support for push notifications soon

Apple will stop support next week for an encryption protocol found to contain a severe vulnerability, the company said on Wednesday.

Symantec sees rise in high-traffic DDoS attacks

A type of distributed denial-of-service attack, DNS amplification, has risen sharply, according to new research from Symantec.

Microsoft discloses zero-day flaw, publishes quick fix

Microsoft has published a temporary fix for a new zero-day flaw that affects nearly all versions of Windows and is currently being exploited via PowerPoint.

CIO
ARN
Techworld
CMO