You Are Here: Home » Articles posted by Bogdan Botezatu

More than one third of Americans don’t use basic malware protection, Bitdefender study shows

Advanced security technologies such as VPN and two-factor authentication are used by less than one in 10 Americans. One in three US-based computer users don’t use an antivirus solution, according to a survey carried by Romanian antivirus vendor Bitdefender in September. Only 67.3 percent of respondents are protected by an antivirus solution. The study also finds that young females (aged 18 to 29) are the le...

ShellShock Roundup: What to do if You are Vulnerable

A security vulnerability on the GNU Bourne Again Shell reported Wednesday is claiming victims in the wild. The flaw – known to the tech world as CVE-2014-6271 and CVE-2014-7169 - allows a remote attacker to run arbitrary code (read malware) on a vulnerable server under certain conditions. The most vulnerable targets to date are web servers that run Apache CGI scripts written in Bash or calling system() or p...

Internet Explorer Zero-Day Turns into Permanent Threat for XP Users

A new Internet Explorer zero-day vulnerability is currently being exploited in the wild. The vulnerability identified on Saturday affects all versions of Internet Explorer, including the archaic versions 6 through 8 which ship with the now-dead Windows XP. Update: the folks at Microsoft have issued a patch for the issue. Oddly enough, the patch has been made available for Windows XP users as well. UPDATE NO...

Advertising SDK Can Be Hijacked for Making Phone Calls, Geo-Locating

Most developers rely on an advertising SDK to monetize a free mobile application. But amid a boom in both advertising and Android app market development, some SDK implementations might pose a risk to application consumers connecting via unsafe networks. Such is the case with Widdit, an advertising framework that uses an interesting technique for implementing new features without requesting additional permis...

Fake AV Uses Stolen Digital Certificate to Evade Detection

Malware creators, who first started pumping out fake antivirus solutions in 2008, are now taking them to the next level by tinkering with user trust. Bitdefender just stumbled on a number of samples for a product called Antivirus Security Pro, a sub-species of fake antivirus that comes with a digitally-signed installer to circumvent some security mechanisms of the operating system and antivirus solution. Mo...

Double-Check Before you Leap: 11.6 Percent of PCs with Security Solution Infected

When it comes to security tips, nothing beats the good old advice to install and update an antivirus solution with state-of the art detection proven in independent performance tests. A security solution should offer full protection against malware, but this is not the case in real life. That’s why a second opinion from a different security solution could save you a lot of trouble, especially before sensitiv...

Security Flaw in Philips Lighting System Lets Hackers Keep You in the Dark

A misfortunate implementation of the security token in the Hue intelligent lighting system from Phillips could allow an attacker to control the lights in your home and turn them on or off as they wish. According to a paper by security researcher Nitesh Dhanjani, the problem arises from the fact that mobile devices or PCs used to control the lighting system are authorized with a token (a unique identifier) d...

Flaw in E-mailing System Exposes Millions of Mexicans

A massive numbers of Prodigy subscribers in Mexico have had their email conversations exposed overnight because of a security flaw in the company’s mobile e-mail and web-based mail systems. According to a news report by El Economista, the flaw allowed search engines to simply index private conversations and list them on the World Wide Web in search results.  At the moment, security specialist Ken Westin, wh...

Hacked Instagram Accounts Show Nutri-Spam

A round of attacks against Facebook-owned Instagram has ended badly for a number of users. According to multiple user reports, the hacked accounts have been used by an unknown group to spam other followers with pictures of smoothies. More than that, a number of users have found that they had been locked out of their accounts, making it impossible for their legit owners to take down the messages. According t...

Apple Developer Center Breach; 100k Accounts Exposed

Apple’s developer site suffered a massive breach last Thursday that resulted in the compromise of roughly 100,000 developer accounts. The intrusion was quickly identified and the affected server was taken offline for “maintenance.” Only on Sunday did the Cupertino vendor publish extra details about the hack, pending a security audit. “Last Thursday, an intruder attempted to secure personal information of ou...

© 2012 Powered By Bitdefender

x
Loading...
Scroll to top