It's been more than two months since Research In Motion (RIM) reported a BlackBerry smartphone or BlackBerry Enterprise Server (BES) security flaw, but the Canadian company has announced a handful of recently discovered vulnerabilities in its BlackBerry 6 handheld OS and BES for IBM Lotus Notes and Microsoft Exchange. BlackBerry Torch 9800 with Padlock (Image Credit: Brian Sacco)
A hacking operation dubbed 'Night Dragon' has targeted energy organisations, using tried-and-tested intrusion methods to steal intellectual property related to oil field exploration and bidding plans, according to security company, McAfee.
Keeping software from being broken and distributed via BitTorrent isn't the only kind of piracy about which developers need to worry.
Microsoft will issue six security updates this week for Windows, Internet Explorer, Outlook Express, Windows Mail and Visio, the company has announced using its new expanded format for advanced warnings.
Identity thieves are offering a person's credit-card number, date of birth and other sensitive information for as little as US$14 over the internet, says a new report on online threats released this week.
The annual IBM Internet Security Systems security trends report, published earlier this week, shows that 7,427 software bugs were cataloged last year, an increase of 39.5% over the number of vulnerabilities identified in 2005.
The days of big virus outbreaks like MyDoom, Melissa and SQL Slammer are gone, says Joe Telafici, director of operations for McAfee Avert Labs.
The long-standing tension between software vendors and independent researchers who try to find security holes in products came into public view late last month, when Oracle criticised bug hunters after it came under fire for its security practices.
Adobe has acknowledged that recent versions of Reader and Acrobat contain unpatched bugs that could allow attackers to take over Windows systems via Internet Explorer.
A bug hunter who had promised to disclose one zero-day bug in Oracle databases every day for a whole week in December has abruptly canceled his plans to do so.
It’s air-points with a difference — the Zero Day Initiative (ZDI) is a 3Com TippingPoint programme that pays security researchers for finding unpublished vulnerabilities and reporting them to TippingPoint.
Over the past few years, Microsoft has aggressively sought to change the image that its products have poor security. The company says that Windows Vista, which has been released to manufacturing, will be its most secure operating system to date, representing a top-down change in how its programmers develop code with security in mind.
Microsoft has set up a Security Cooperation Programme (SCP) along with New Zealand’s Centre for Critical Infrastructure Protection (CCIP).
Attackers are exploiting the zero-day VML vulnerability on Windows-based machines by targeting a separate hole in cpanel, an application that’s popular with web hosting services.
New Zealand is as susceptible to all kinds of cyber attacks as the rest of the world, says Rogan Mallon, principal systems engineer at Symantec New Zealand. This is despite our remote location and low population and is because of our increasing use of broadband.