Black Hat conference reveals how public Wi-Fi networks are a bigger security threat than ever before.
Public Wi-Fi networks such as those in coffee shops and airports present a bigger security threat than ever to computer users because attackers can intercede over wireless to "poison" users' browser caches in order to present fake Web pages or even steal data at a later time. That's according to security researcher Mike Kershaw, developer of the Kismet wireless network detector and intrusion-detection system, who spoke at the Black Hat conference.
A zero-day attack is posted as Adobe patches a separate Flash Player issue
Adobe Systems' security response team is scrambling to fix a newly disclosed bug in its Illustrator software, even as it readies another security patch for next week.
The cofounder of a Web-based company is accused of launching DOS attacks
Khalid Shaikh, former CEO of YouSendIt, has been indicted by a grand jury on four counts of mail fraud after allegedly launching four denial-of-service (DOS) attacks against the company's servers, the U.S. Department of Justice said.
The flaw could allow an attacker to take control of an older ISS server or launch a DoS attack
Microsoft says that cyber-criminals are starting to exploit an unpatched bug in its IIS server software that was made public earlier this week.
Heartland, Hannaford attack details could spur focus on Web app security
This week's disclosure that the huge data thefts at Heartland Payment Systems and other retailers resulted from SQL injection attacks could finally push retailers into paying serious attention to Web application security vulnerabilities, just as the breach at TJX focused attention on wireless issues.
The cyberattackers were tipped off in advance of Russian military operations and timed the DDOS accordingly
The cyberattacks against Georgia a year ago were conducted in close connection with Russian criminal gangs, and the attackers likely were tipped off about Russia's intent to invade the country, according to a new technical analysis, much of which remains secret.
Investigators are chasing IP addresses and collecting human intelligence to nab perpetrators
The investigation into the attacks against high-profile Web sites in South Korea and the U.S. is a winding, twisty electronic goose chase that may not result in a definitive conclusion on the identity of the attackers.
Money moves fast and can be gone for good in ACH fraud
The criminals knew what they were doing when they hit the Western Beaver County School District.
Evidence points to hackers who crave attention, says noted botnet expert
There's nothing in the code of the malware used since Saturday to attack a wide array of U.S. and South Korean government and high-profile Web sites that indicates the campaign is backed by the government of North Korea, a noted botnet researcher said today.
Countries are grappling to define cyberwarfare and how they can respond under international law
Nations increasingly touched by cyberattacks are still in the very early stages of figuring out how to deal with incidents that could escalate into critical national security threats.
Information requests from a hugely popular video application flooded China's telecom networks
An attack on the servers of a domain registrar in China caused an online video application to cripple Internet access in parts of the country late on Wednesday.
The U.S. government lacks a comprehensive policy about cyberattacks, a group says
The U.S. needs to engage in a national dialog about its government's use of cyberattacks against other nations, and the government lacks a comprehensive policy about how and when it will engage in cyberwarfare, a new study says.
