Threatpost for B2B

Syndicate content
The First Stop For Security News
Updated: 3 hours 40 min ago

Missile Defense Plans Hacked from Israeli Contractors

Mon, 07/28/2014 - 16:30
A new report claims attackers, apparently based in China, were able to hack into three Israeli defense firms to make off with sensitive military data in 2011.

DEF CON Hosting SOHO Wireless Router Hacking Contest

Mon, 07/28/2014 - 16:00
ISE will host a two-tracking hacking contest at DEF CON next week that focuses on the security of home and small office wireless routers.

Harnessing the Power of an Android Cluster for Security Research

Mon, 07/28/2014 - 14:20
When the topic of mobile security comes up, users and researchers often discuss Android as if it’s one monolithic operating system like iOS is. But the fact is that there are nearly as many versions of Android as there are Android devices, which has led to plenty of confusion when it’s time to fix a security […]

Koler Ransomware Infrastructure Complex and Agile

Mon, 07/28/2014 - 13:08
Researchers at Kaspersky Lab report on the infrastructure supporting the Koler ransomware, which not only has components targeting Android devices, but also redirects desktop browsers to other ransomware and exploit kits.

EFF Files Motion Asking Judge to Rule NSA Data Collection Unconstitutional

Mon, 07/28/2014 - 10:27
The EFF has asked a federal judge to rule that the NSA's collection of massive amounts of upstream user data is unconstitutional, violating the Fourth Amendment.

Siemens Patches Five Vulnerabilities in SIMATIC System

Fri, 07/25/2014 - 13:32
Siemens released an update for two builds of its SIMATIC automation system this week, addressing a quintet of issues, four of which are remotely exploitable.

Microsoft Exec Says Company Has Never Been Asked to Backdoor a Product

Fri, 07/25/2014 - 13:28
One of Microsoft's top security executives said the company has never been asked by the United States government to build a backdoor into any of its products, and if the company was asked, it would fight the order in the courts.

TAILS Team Recommends Workarounds for Flaw in I2P

Fri, 07/25/2014 - 10:04
The developers of the TAILS operating system say that users can mitigate the severity of the critical vulnerability researchers discovered in the I2P software that's bundled with TAILS with a couple of workarounds, but there is no patch for the bug yet.

More Details of Onion/Critroni Crypto Ransomware Emerge

Thu, 07/24/2014 - 14:37
New ransomware has been dubbed Onion by researchers at Kaspersky Lab as its creators use command and control servers hidden in the Tor Network (a/k/a The Onion Router) to obscure their malicious activity.

Mozilla Improves Malware Blocking in Firefox 31

Thu, 07/24/2014 - 13:54
The newest version of Mozilla Firefox includes an improved defense against malware downloaded through the browser, which could prevent many kinds of infections.

Phony Googlebots Becoming a Real DDoS Attack Tool

Thu, 07/24/2014 - 12:00
Phony Googlebots are being used with greater frequency to launch and carry out application-layer denial-of-service attacks.

Research Shows Increase in Internet Filtering and Usage of FireChat App in Iraq

Thu, 07/24/2014 - 12:00
Researchers at Citizen Lab have taken a close look at the extent of Internet filtering in Iraq, as well as the security of a popular offline chat app used there, and found an increase in the number of services blocked by the government and identified serious privacy and security problems with the chat app. As tensions […]

Bugcrowd Releases Open Source Vulnerability Disclosure Framework

Thu, 07/24/2014 - 09:01
The problems that come from doing security research on modern Web applications and other software aren’t just challenging for researchers, but also for the companies on the receiving end of their advisories. Companies unaccustomed to dealing with researchers can find themselves in a difficult position, trying to figure out the clearest path forward. To help […]

WordPress Sites Seeing Increased Malware, Brute Force Attacks This Week

Wed, 07/23/2014 - 15:11
A glut of Wordpress sites have fallen victim to both malware infections and a series of brute force attacks that have making the rounds over the past several days, researchers claim.

Researchers Demo TAILS Flaw Exploit, Disclose Details to Developers

Wed, 07/23/2014 - 14:22
The critical vulnerability in the TAILS operating system discovered by researchers at Exodus Intelligence lies in the I2P software that's bundled with the OS and the company has released some details and a video demonstrating an exploit against the bug.

Firefox 31 Patches 11 Security Flaws

Wed, 07/23/2014 - 09:40
Mozilla has released a new version of Firefox, which includes patches for 11 security vulnerabilities. Three of the bugs fixed in Firefox 31 are critical, including a use-after-free vulnerability and a handful of memory safety issues.

Researchers Plan to Disclose Critical Bugs to TAILS Team Soon

Tue, 07/22/2014 - 15:52
There are several security issues that aren't patched in the new release of the OS Tails that have been identified by researchers at Exodus Intelligence.

Trio of Flaws Found in OleumTech Wireless Monitoring System

Tue, 07/22/2014 - 11:11
Researchers have identified several remotely exploitable vulnerabilities in a wireless remote monitoring product from OleumTech that is used in energy, water and other critical infrastructure sectors.

Privacy Badger Extension Blocks Tracking Through Social Icons

Tue, 07/22/2014 - 10:03
Privacy Badger is one of a new generation of tools designed to help users block much of the silent, pervasive tracking that's done on the Web today, a lot of which is accomplished through social media channels.

Third-Party Software Library Risks To Be Scrutinized at Black Hat

Tue, 07/22/2014 - 09:00
Third-party software libraries introduce efficiency and risk into enterprise applications. Two researchers will identify some of the most vulnerable libraries during a talk at the upcoming Black Hat conference.