You Are Here: Home » Posts tagged "security"

Google Will Mark HTTP Sites As Unsafe Starting in 2015

Google plans to mark all HTTP pages “insecure” to warn users about data security and privacy issues, according to Chromium.org. As part of the open-source Chromium Projects, the initiative will affect Chrome starting in January. It’s meant to encourage all website owners to switch to HTTPS by default. “We all need data communication on the web to be secure (private, authenticated, untampered),” Google’s tea...

Delta Airlines security flaw allows access to strangers’ boarding passes

You would like to think that airlines are taking security seriously. After all, every time you try to board a plane you're asked to take off your belt and shoes, prove that your laptops boot up, discard any liquids that weren't bought in Duty Free, and dispose of your toenail clippers. Which makes it all the more ironic that it appears some airlines make it so darn easy to grab a complete strangers' electro...

Over 30 Vulnerabilities Exposed in Google App Engine

Over 30 vulnerabilities that allow hackers to bypass critical security sandbox defenses were discovered in Google App Engine (GAE), according to The Hacker News. Security Explorations researchers identified the series of flaws in the Java environment of Google’s Platform as a Service. Attackers can exploit the vulnerabilities to achieve a complete Java VM security sandbox escape, as well as to execute arbit...

Hackers Can Attack Social Logins to Impersonate Users, IBM Study Shows

Cyber-criminals can exploit social logins, such as the “Sign In With Facebook/LinkedIn/etc” buttons, to hijack accounts and impersonate users through a technique dubbed SpoofedMe, according to IBM research. To run the attack, hackers register a spoofed account at a vulnerable identity provider using the victim’s email address. Cyber-criminals can then post misleading information and even malware on victims’...

How Could Hacker Grinch Steal Your Christmas: Five Security Scenarios to Avoid

We hate to sound gloomy before the holidays, but Christmas not only brings joy and presents. It comes with increasing cyber-crime activity as well, as Hacker Grinch prepares new scams and online attacks. Identity fraudsters claimed a new victim every two seconds in 2013, and the number of identity fraud victims rose to 13.1 million, according to Javelin Strategy & Research. These figures only express fr...

New Snapcash Feature Triggers Concern; Users Call it ‘Future of Cam Girls’

New security concerns were raised after Snapchat launched a feature that allows users to send cash within the app, according to media reports. On Reddit, users named Snapcash “the future of cam girls,” saying the service will also be used to pay for online prostitution. To ease security concerns, Snapcash is powered by credit card processing and business solutions company Square. The service handles the bac...

‘Facebook at Work’ Could Increase Security Risks

The ‘Facebook at Work’ project could raise even more security and privacy issues than the regular social network, according to Bitdefender security experts. The antivirus software specialists warn of the numerous scams that could flood the new project if the company neglects thorough security measures. As Facebook allegedly crafts an office-dedicated social network, Bitdefender warns about e-threats that co...

Zero-Day Remote Code Execution Flaw Disclosed by Microsoft; Workarounds Issued

Microsoft has disclosed on Tuesday in a Security Advisory a Windows OLE zero-day remote code execution (RCE) vulnerability  in PowerPoint and released a quick fix. The vulnerability impacts all Windows versions, except Windows Server 2003 and it is currently being exploited via malicious Office files that contain OLE (Object Linking and Embedding) objects. "The vulnerability could allow remote code executio...

Facebook Designs Stolen Credentials Parsing System

Facebook has built an automated system designed to analyze data from online published credential leaks, according to their announcement. Facebook users are going to be prompted if their usernames and passwords match the ones leaked online. This measure is going to protect users who have been compromised in third-party data breaches and have the same credentials on Facebook. The primary source seems to be Pa...

Facebook Bug Bounties for Ads Code Just Doubled

Facebook doubled the bounties for security vulnerabilities discovered in the code behind its advertising system, according to PC World. Researchers who find bugs in the ads code will be paid at least $1,000, and not $500 as until now. Typical vulnerabilities include wrong permission checks, insufficient rate-limiting, edge-case CSRF issues, and Flash problems in the ads code. The social network announced it...

© 2012 Powered By Bitdefender

x
Loading...
Scroll to top