Latest News

Application Security

Fake Porn App is First SMS Trojan to Land on US Soil Fake Porn App is First SMS Trojan to Land on US Soil

SMS trojans are starting to appear in more and more countries, and for the first time, researchers have detected an active SMS trojan in the US.
23 April 2014

Millions of Android App Downloads Are Vulnerable to Heartbleed Bug Millions of Android App Downloads Are Vulnerable to Heartbleed Bug

The Heartbleed vulnerability continues to sap the life force from various sectors, and it looks like the mobile applications space is not immune. New analysis has revealed that approximately 150 million downloads of Android apps contain OpenSSL libraries vulnerable to Heartbleed, a larger number than originally expected.
23 April 2014

Google Issues Unprecedented Refund and Apology for Scam Virus App Google Issues Unprecedented Refund and Apology for Scam Virus App

Google is refunding victims of a bogus Android app that called itself “Virus Shield” – despite offering zero anti-virus capabilities.
22 April 2014

DBIR: POS Attacks Wane, Cyber-espionage is Up DBIR: POS Attacks Wane, Cyber-espionage is Up

In the latest Verizon Data Breach Investigations report (DBIR), Verizon researchers noted that 92% of the 100,000 security incidents analyzed over the past 10 years can be traced to nine basic attack patterns that vary from industry to industry.
22 April 2014

CloudFlare Launches Bug-Hunting Program CloudFlare Launches Bug-Hunting Program

CloudFlare has launched a vulnerability disclosure program, facilitated by HackerOne’s bug reporting platform. The vendor is inviting the security community to report any flaws members may have discovered, track CloudFlare’s progress in addressing it, and receive confirmation when it has been fixed.
21 April 2014

Android Malware Repurposed to Thwart Two-factor Authentication Android Malware Repurposed to Thwart Two-factor Authentication

A malicious mobile application for Android that offers a range of espionage functions has now gone on sale in underground forums with a new trick: it’s being used by several banking trojans in an attempt to bypass the two-factor authentication method used by a range financial institutions.
17 April 2014

Oracle Fixes 104 Flaws in Massive April Patch Update Oracle Fixes 104 Flaws in Massive April Patch Update

Oracle has released its April 2014 Critical Patch Update, providing fixes for 104 vulnerabilities across a number of product lines, with several of them considered severe. Among the patches are fixes for 37 Java SE vulnerabilities.
17 April 2014

Android Flaw Allows Home Screen Icons to be Hijacked Android Flaw Allows Home Screen Icons to be Hijacked

A fresh Android vulnerability dubbed “occupy your icons” by mobile researchers has been uncovered. It allows a malicious app to replace legitimate Android home screen icons with fake ones that point to phishing apps or malware-serving websites.
14 April 2014

Open-source Bug Leaves Millions of Websites Exposed to Data Leaks Open-source Bug Leaves Millions of Websites Exposed to Data Leaks

Heartbleed, a vulnerability in the OpenSSL crypto software library, has left millions of websites potentially vulnerable to data leakage, in what some security experts are calling the most significant security problem in recent memory.
11 April 2014

Botnets Take to Mobile Dating App Tinder to Flirt and Hurt Botnets Take to Mobile Dating App Tinder to Flirt and Hurt

A series of bots have invaded the Android version of dating app Tinder, and are spreading dangerous downloads after luring users with tempting profiles and pictures stolen from an Arizona-based photography studio.
05 April 2014

Showing 1 - 10 of 2,400 articles
We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies. ×