Post Thumbnail

Microsoft's software isn't immune to the rash of recent web encryption exploits, it seems. The company has discovered (and thankfully, patched) a Windows flaw that lets hackers use the software's Secure Channel technology, which handles SSL and TLS encryption, to compromise PCs. If you're suscepti

15 days ago 0 Comments
November 13, 2014 at 12:25AM
Post Thumbnail

If you're using Samsung's Find My Mobile service to keep tabs on your Galaxy phone's whereabouts, you may want to stop using it for a while. Both NIST and security researcher Mohamed Baset are warning about an exploit that lets evildoers remotely lock, ring or wipe Samsung smartphones. As it turns

1 month ago 0 Comments
Post Thumbnail

Don't get too comfy just because companies are rolling out patches for the Shellshock security bug -- as it turns out, even updated websites and devices remain at risk. Developers are reporting that they can still run any code they like (and thus hijack systems) through the bash command shell sim

2 months ago 0 Comments
Post Thumbnail

Apparently, the internet has more deep-seated security bugs to worry about than Heartbleed. Researchers have discovered a longstanding flaw in a common Unix command shell (bash) for Linux and Macs that lets attackers run any code they want as soon as the shell starts running. They can effectively

2 months ago 0 Comments
Post Thumbnail

If you're an iPhone user, you may want to be cautious about opening messages that contain phone numbers in the near future; they may cost you a lot of money. Developer Andrei Neculaesei notes that maliciously coded links in some apps will abuse the \"tel\" web handler (which covers dialing) to autom

3 months ago 0 Comments
Post Thumbnail

People have been airing their dirty laundry and slinging shade on Secret -- an anonymous sharing app -- for months now. Who could blame them? It's fun, it's freeing and accountability basically doesn't exist there... or so some may believe. Kevin Poulson at Wired spoke to a security researcher nam

3 months ago 0 Comments
Post Thumbnail

Think you're safe from spies because you're using Tails, the same Linux distribution that Edward Snowden uses to remain anonymous? Unfortunately, you'll still have to be on your guard. Security firm Exodus Intelligence has revealed that the latest version of the OS, 1.1, is vulnerable to attacks t

4 months ago 0 Comments
Post Thumbnail

It's easy for someone in your home to interrupt your Chromecast stream and play something of their own, but you can always retake control... right? Well, don't count on it. Analyst Dan Petro has built the Rickmote Controller, a proof-of-concept device that hijacks Google's media stick to play ever

4 months ago 0 Comments
Post Thumbnail

It only makes sense that putting a TV online theoretically exposes it to hackers, but it's now clear that those hacks don't have to go through conventional internet pipelines. A team of Columbia University researchers has published details of a vulnerability in an interactive TV standard (HbbTV) t

5 months ago 0 Comments
Post Thumbnail

The world hasn't yet recovered from the Heartbleed vulnerability in OpenSSL and now there's news of a new bug affecting the popular open-source security package. This recently announced, and already patched, exploit could allow an attacker to see and modify traffic between an OpenSSL client and an

5 months ago 0 Comments
Post Thumbnail

Apple has largely avoided the wrath of the Heartbleed security flaw, but it now appears that the company's products aren't completely immune. The crew in Cupertino just updated its most recent AirPort Extreme and Time Capsule WiFi routers to fix a Heartbleed-related vulnerability that surfaces whe

7 months ago 0 Comments
Post Thumbnail

Read our Heartbleed defense primer? Good, but the fight for your privacy isn't over just yet: you might have to replace your router, too. Cisco Systems and Juniper Networks have announced that the Heartbleed bug -- a flaw in OpenSSL that lets attackers bypass common security protocols -- has been

7 months ago 0 Comments
Post Thumbnail

Don't change your password. It's strange advice to hear when the so-called Heartbleed bug is leaving databases all over the web open and exposed, but it's applicable. Yes, security has been compromised for many of your favorite websites and services (including Google, Flickr and Steam, at least in

7 months ago 0 Comments
Post Thumbnail

Most internet security holes, even the bigger ones, tend to be fairly limited in scope -- there are only so many people using the wrong software or visiting the wrong sites. Unfortunately, that's not true of the newly revealed Heartbleed Bug. The flaw, which affects some older versions of common i

7 months ago 0 Comments