Editor's News

A series of legal actions have begun over the serious breach suffered by US retailer Target.   According to the complaint, as “Target and Trustwave failed their duties to 110 million customers, it falls to the Banks and the other Class members to protect those customers by reissuing their credit and debit cards, and communicating with those customers to prevent fraud and repay any fraudulently-made purchases”.   The ruling said that the banks and the...

Government snooping has put a third of organisations off using the cloud.   According to research by Lieberman Software of 280 IT professionals attending last month’s RSA Conference, fear of government snooping discourages 33 per cent of IT professionals from the cloud, while 80 per cent prefer to keep more sensitive data stored within their company’s own network.   Philip Lieberman, President and CEO of Lieberman Software, said: “IT managers are aware there is very...

Almost ten million mobile devices such as smartphones, tablets and laptops have been lost by employees over the last year.   According to research by EE of 2,000 consumers, one in five (19 per cent) of employees say they lost their mobile device on a work night out, while one in six (16 per cent) left it on public transport. Devices were also commonly left in taxis and public toilets. Of those lost, for every...

Android vulnerabilities in the way the OS handles updates have been detected, putting around one billion devices at risk.   According to a report by the Hacker News, researchers from Indiana University and Microsoft have discovered a new set of Android vulnerabilities that is capable to carry out privilege escalation attacks because of the weakness in its Package Management Service (PMS).   Named the Pileup flaws, there are six different vulnerabilities within the Android PMS and are...

Criminal black markets are complex and mirror free markets in their unprecedented levels of maturity and growth.   According to a report by RAND and Juniper, the black markets have significant levels of economic sophistication, reliability, accessibility and resilience in the products, distribution channels and actors involved.   The report claimed that the black markets are growing in size and complexity and the hacker market has emerged as a playground of financially driven, highly organised...

Microsoft has warned of a zero-day vulnerability in Word and limited, targeted attacks directed at the 2010 version.   In an advisory, Microsoft said that the vulnerability could allow remote code execution if a user opens a specially crafted RTF file using an affected version of Microsoft Word, or previews or opens a specially crafted RTF email message in Microsoft Outlook while using Microsoft Word as the email viewer.   The vulnerability can be exploited...

Project management website Basecamp was hit by a 20 Gbps distributed denial-of-service (DDoS) attack and blackmail attempt yesterday. In a statement, Basecamp said that the attack targeted the network link between its servers and the internet. “This is like a bunch of people blocking the front door and not letting you into your house. The contents of your house are safe - you just can’t get in until they get out of the way,” it...

Gmail has announced it is to add HTTPS by default for checking and sending email, after adding it to its service in 2010.   In a blog, Nicolas Lidzborski, Gmail security engineering lead, said that today's change means that no one can listen in on your messages as they go back and forth between you and Gmail’s servers, regardless of device or connection.   He said: “Every single email message you send or receive -...

MalwareBytes has announced the launch of the premium edition of its software, the first completely new version of the company’s flagship security software for six years.   Named Malwarebytes Anti-Malware Premium, it is designed to work alongside traditional anti-virus to provide additional protection, and combines five powerful technologies in a lightweight 16MB download. These include a new heuristics engine; anti-rootkit technology; Malwarebytes’ Chameleon to brute force start-up and scan when malware is operating; malicious URL...

Microsoft has admitted to taking “extraordinary actions based on the specific circumstances” to access a user’s email account.   In a statement, John Frank, deputy general counsel and vice president of legal & corporate affairs at Microsoft, said that while it believes that Outlook and Hotmail email are and should be private, information it received indicated an employee was providing stolen intellectual property to a third party.   According to BBC news, Microsoft was alerted...