Apple has patched 41 vulnerabilities in iTunes with version 11.0.3 of the digital store for OS X and Windows, including the one that Pinkie Pie rode to a $60,000 prize in the Google Pwnium 2 hackathon.
17 May 2013
The Syrian Electronic Army is continuing its campaign to highjack the Twitter accounts of high-profile media outlets, with the Financial Times becoming its latest victim.
17 May 2013
Rep. Hank Johnson, D-Ga, has introduced the bipartisan Application Privacy, Protection and Security (APPS) Act of 2013 (H.R. 1913). Its purpose is to require app developers to maintain privacy policies, obtain consent from consumers before collecting data, and securely maintain the data they collect.
17 May 2013
A leading anti-malware company has uncovered a wide-ranging malware campaign that appears to originate in India and seems primarily to target Pakistan with data-stealing malware.
17 May 2013
Proving that not all demonstrations are staged, a previously unknown Mac backdoor was discovered during a live presentation at the Oslo Freedom Forum earlier this week.
17 May 2013
Critical infrastructure threats are up significantly according to US officials – a worrying state of affairs that spans a wide range of threat vectors and potential participants.
16 May 2013
Since its launch in October 2012, 5,700 people have used the Microsoft Cloud Security Readiness Tool (CSRT). The tool asks 27 questions regarding the current state of an organisation’s security posture and cloud readiness. The results have been anonymised and analysed, and the overarching conclusion is that most organisations are relatively immature across almost all control areas represented by the CSRT.
16 May 2013
Barracuda Networks, eyeing Google’s move to unify storage across its products, has increased the amount of free cloud storage for its own Copy online file syncing users, from 5GB to 15GB.
16 May 2013
The European Union could soon consider a proposal that would give law enforcement the ability to engage in “offensive hacking,” i.e., compromise private infrastructure and systems to gather information via spyware, delete data or even take servers offline completely when there is probable cause to suspect cybercriminal activity.
16 May 2013
Stuxnet is often cited as history’s first true cyber weapon. By common consensus it was developed and used by the US and Israel to successfully disrupt Iran’s nuclear program – but a new report questions its success.
16 May 2013