Stories by Jeremy Kirk

Google+

Security experts warn of 'POODLE' attack against SSL 3.0

Google researchers have found a severe flaw in an obsolete but still used encryption software, which could be exploited to steal sensitive data.

Security vendors claim progress against Chinese group that hacked Google

A group of security companies say a collaborative effort has helped counter several hacking tools used by a China-based group most known for provoking strong condemnation from Google four years ago.

YouTube served malicious advertisements, Trend Micro says

Malicious advertisements, some of which were displayed on YouTube, redirected more than 113,000 people in the U.S. to harmful websites in just a month, Trend Micro said Tuesday.

'Hurricane Panda' hackers used Microsoft zero-day, CrowdStrike says

One of the zero-day flaws patched by Microsoft on Tuesday had been used for some time by a group with suspected Chinese government ties that targets technology companies, CrowdStrike's chief executive said.

1

Cisco advises users to lock down WebEx to prevent snooping

Cisco has warned customers to lock down WebEx after a security researcher and journalist found many big-name companies left some online meetings open for anyone to join.

Hong Kong democracy activist websites compromised

Four websites promoting democracy in Hong Kong have been rigged to deliver malicious software, according to a Washington, D.C.-based security company.

Dairy Queen stores hit by 'Backoff' malware, payment card data stolen

Dairy Queen said Thursday the "Backoff" point-of-sale malware infected systems at 395 of its stores, stealing payment card data.

Russian faces more charges in point-of-sale hacking case

A Russian man accused of hacking point-of-sale systems in the U.S. is facing additional charges following a revised indictment returned by a grand jury on Thursday, the U.S. Department of Justice said.

Four-digit passcodes remain a weak point in iOS 8 data encryption

The strength of Apple's revised encryption scheme in iOS 8 hinges on users choosing a strong passcode or password, which they rarely do, according to a Princeton University fellow.

Russian cybercrime group compromised half a million computers

A mistake by a suspected Russian-speaking cybercriminal group allowed a security vendor to peep on a campaign that stole login credentials for hundreds of thousands of online bank accounts.

Belkin says router outages should be resolved

Belkin said Tuesday afternoon it had fixed an issue that caused some of its Wi-Fi routers to disconnect from the Internet.

AT&T fired employee who improperly accessed customer accounts

AT&T fired an employee who improperly accessed about 1,600 customer accounts and could have viewed customers' Social Security and driver's license numbers.

Yahoo says attackers looking for Shellshock found a different bug

Yahoo said Monday it has fixed a bug that was mistaken for the Shellshock flaw, but no user data was affected.

JPMorgan Chase breach affected 83 million customers

Names, addresses, phone numbers and email addresses were compromised in a cyberattack on JPMorgan Chase but no "unusual" fraud has yet been detected.

1

How hackers accidentally sold a pre-release XBox One to the FBI

Earlier this week, an indictment was unsealed outlining a long list of charges against a group of men accused of running a three-year hacking spree that stole intellectual property from gaming companies.