- Despite shocks, organisations still not making security a continuous process: Bussiere
- Analysis skills lacking as security data piles up, consultant warns
- Virtual servers still face real security threats
- Is Bring Your Own Identity a security risk or advantage?
- Insecure Connections: Enterprises hacked after neglecting third-party risks
online safety - News, Features, and Slideshows
The Russian Ministry of Interior is willing to pay 3.9 million roubles, or around US$111,000, for a method to identify users on the Tor network.
A critical vulnerability found recently in a popular newsletter plug-in for WordPress is actively being targeted by hackers and was used to compromise an estimated 50,000 sites so far.
Six people have been indicted on charges of running an international ring that resold tickets bought through compromised StubHub accounts for some of New York's biggest concerts and sporting events.
Developers of Tor software believe they've identified a weakness that was scheduled to be revealed at the Black Hat security conference next month that could be used to de-anonymize Tor users.
Advocacy group the Electronic Frontier Foundation wants to address the poor security track record of home routers with a new firmware project that will encourage users to share their Internet connection publicly by setting up guest Wi-Fi networks.
Researchers are gearing up to hack an array of different home routers during a contest next month at the Defcon 22 security conference.
A new Trojan program designed to steal log-in credentials and other financial information from online banking websites is being advertised to cybercriminal groups on the underground market.
Oracle has dispelled rumors that the upcoming security update for Java 7 and those it will release in the future might not work on Windows XP.
Microsoft updated the Certificate Trust List in Windows to revoke trust for a certificate authority operated by the Indian government after it improperly issued at least 45 SSL certificates for domains owned by Google and Yahoo.
Cybercriminals are trying to create a new botnet based on what is likely a modification of Gameover Zeus, a sophisticated Trojan program whose command-and-control infrastructure was taken over by law enforcement agencies at the beginning of June.
The scope of a recent security breach at a digital certificate authority (CA) controlled by the Indian government is bigger than initially thought and also targeted domain names owned by Yahoo, in addition to several owned by Google.
Implementation issues with AVG Secure Search, a browser toolbar from antivirus vendor AVG Technologies that's supposed to protect users from malicious websites, could have allowed remote attackers to execute malicious code on computers.
Attackers injected malicious code into Dailymotion.com, a popular video sharing website, and redirected visitors to Web-based exploits that installed malware.
Two SQL injection vulnerabilities were patched in Ruby on Rails, a popular open-source Web development framework used by some high-profile websites.
PayPal was one of the first large online services providers to offer two-factor authentication to its users, but until recently the company's implementation had a loophole that could have allowed attackers to bypass this additional protection.
- Vodafone re-allocates 850MHz 4G spectrum a week after Telstra and Optus 700MHz launch
- Email to make way for automation: KPMG
- Huawei targets European football Clubs with FanPlay partnership
- More than 6000 Australians hit by Koler 'police' mobile ransomware
- EXCLUSIVE: WhiteGold secures sole distribution rights for Barracuda Networks
- Rip Curl rides wearable wave with smartwatch for surfers
- JC Penney: Finding the right customer engagement strategy
- Brands demonstrate a hotchpotch of IT/marketing relationships
- Metrics a must for making the most of content marketing, says Forrester
- Ticketek: Modern marketing strategy is about treating people as people