IRS Warns of New Online Tax Scams: Protect Yourself

Scam artists exploiting tax season have devised a range of new online cons: fake tax documents that contain malicious surprises; mass distribution of keyloggers aimed at snatching the identity of PC-based tax filers. More...

Google search behind most phishing sites

Three-quarters of phishing sites are built on hacked servers that have been tracked down using pre-programmed Google search terms, according to research from brand-protection firm MarkMonitor. More...

MacBook Air hacked in two minutes

A three-way hacking contest between Apple, Windows and Linux laptops has ended in the Mac caving in first - in just two minutes. More...

To Adopt Mobile P2P Payments, Consumers Want Speed and Security.

Demand for high-speed mobile person-to-person (mobile P2P) payments and transfers is growing, with one in ten consumers saying they would likely use the service if it were available. More...

TJX must tighten security after data breach

The group, which owns the 226-store UK-based TK Maxx chain, will have to implement comprehensive information security programmes and obtain audits by independent third-party security professionals every two years for 20 years. More...

Security Research on Tap With New Track at RSA Conference

In less than two weeks, 17,000 people are expected to visit the Moscone Center in San Francisco for this year’s RSA Conference. Most will likely be blissfully unaware of the amount of work that goes into preparing an event attended by thousands of people. Sandra Toms LaPedis will not be one of them. More...

Hackers seize on Excel vulnerability

In its advisory, Symantec said one Web server is hosting the malicious file, which it calls "Trojan.Mdropper.AA." The Trojan Horse spreadsheet document can download other harmful files to a computer. More...

Update: Microsoft admits it knew about, didn't patch, bugs

Microsoft Corp.'s security team today acknowledged that it knew of bugs in its Jet Database Engine as far back as 2005 but did not patch the problems because it thought it had blocked the obvious attack vectors. More...

Email Marketers in Trouble: Definition of 'Spam' Evolves to Mean 'Unwanted'

The survey sought to determine consumers' perceptions of what spam is, why they report emails as spam and what they think happens when the "report spam" button is clicked. More...

Enterprises urged to plug IM security holes

One in four employees has used instant messaging to send information about company plans, finances or password/login credentials, security experts have warned. More...

Security being ignored as VoIP deployments increase

"No mechanisms for securing VoIP had more than 50% penetration across all sizes of business," revealed Victoria Fodale, In-Stat analyst. "Proactive measures, including periodic security audits and pre-deployment assessments had low percentages of penetration too, even among the larger organisations." More...

Security lapse exposes Facebook photos

A security lapse made it possible for unwelcome strangers to peruse personal photos posted on Facebook Inc.'s popular online hangout, circumventing a recent upgrade to the Web site's privacy controls. More...

Microsoft Reissues Security Patch for Excel 2003

A calculation-error bug in Microsoft Office Excel 2003, which was acknowledged by Microsoft last Friday, has been resolved with a security update. More...

Hackers Look to Steal Online Gaming Passwords

Security Researchers at McAfee’s Avert Labs discovered the attack March 12. According to the security vendor, the hackers have injected script into valid Web pages to include a reference to a malicious .JS file. More...

Airlines responding to IT security concerns

ccording to the security survey, airlines are responding to these challenges by creating dedicated security management teams which are now operational at 63% of the respondent airlines, up from 55% in 2006. More...

BBC issues fix for hacked iPlayer

Digital rights management issues mean that the BBC is able to offer streamed programmes to PC users for up to a week after broadcast. More...

Security Card Chip Can Be Hacked

The "Mifare" chip technology is used in an estimated 2 million security access cards in the Netherlands and a billion cards globally. More...

McAfee Warns of Mass Web Attack

The approach is similar to the attack that hit the Miami Dolphins and Dolphins Stadium before the Super Bowl, McAfee says. More...

IRS warns of 'phishing'

Under the stimulus package enacted by Congress, individuals will receive $300 to $600 and couples $600 to $1,200. Parents will also receive $300 for each child under 17. More...

Cisco, Adobe Issue Security Bulletins

Cisco has released an updated version of the UCP application to deal with these issues; the company says there's no known workaround to mitigate the vulnerabilities. More....

Password-stealing hackers infect thousands of Web pages

The Web attack, which appears to be a coordinated effort run out of servers in China, was first noticed by McAfee researchers on Wednesday morning. Within hours, the security company had tracked more than 10,000 Web pages infected on hundreds of Web sites. More...

A Heart Device Is Found Vulnerable to Hacker Attacks

The threat seems largely theoretical. But a team of computer security researchers plans to report Wednesday that it had been able to gain wireless access to a combination heart defibrillator and pacemaker. More...

Chip & PIN machines are vulnerable to attack

Criminals are already using techniques similar to these to defraud British customers, with losses in one case alone claimed to be in eight figures. The technical sophistication required to carry out this attack is low, and fraudsters have already shown they have the necessary skills. More...

Security Card Chip Can Be Hacked

The "Mifare" chip technology owned and licensed by NXP Semiconductors is frequently used in public transport systems such as London's "Oyster" card. More...

Hacking attacks can turn off heart monitors

Many thousands of people across the world have the monitors, medically known as implantable cardiac defibrillators (ICDs), installed to help their hearts beat regularly. More...

Crafty Spam Outsmarts Gmail's Filters

Gmail spam went from 1.3 percent of all spam e-mail to 2.6 percent in February, according to data released by e-mail security vendor MessageLabs on Monday. More...

Phishing attacks, fraud, continue to hound eBay

The auction giant has scored significant victories against its would-be fraudsters in the past. Last summer, eBay successfully disrupted a significant Romanian criminal ring. More...

Computer virus exposes Oregon donors data

A computer virus attack may have exposed the personal information of more than 11,000 people who donated to a Central Oregon hospital system. More...

FBI chief says report will show another year of privacy abuses

The breach occurred before the FBI enacted broad new reforms in March 2007 to prevent future lapses, FBI Director Robert Mueller said. More...

Anti-malware failing firms, Nato expert says

Organisations with sensitive data remain at risk from increasingly cunning spies because anti-malware firms are not interested in "low traffic" problems. More...

Sites With Anti-Fraud Sign Still Flawed

Experts say the SSL certificates those green lights signify — digital stamps of approval that Web sites buy to prove they're running a legitimate business and can send and receive encrypted data safely — don't provide the safety they seem to. More...

Memory trick breaks PC encryption

Scientists have shown that it is possible to recover the key that unscrambles data from a PC's memory. It was previously thought that data held in so-called "volatile memory" was only retained for a few seconds after the machine was switched off. More...

Beware MonaRonaDona antivirus scam, researchers warn

Unlike most viruses and Trojans which try to go about their evil task as invisibly as possible, the MonaDonaRona Trojan displays a broadly visibly message in front of the victim. More...

Windows-based cash machines 'easily hacked'

Up to 90 percent of the ATMs in the U.K. could be at risk from these attacks as they rely on desktop PC technology--usually Intel hardware and Windows operating systems--linked to other machines, some connected to the Internet, in the bank's network, according to experts. More...

Exchange Server 2007 Bitten By Leap Year Bug

The problem prevented administrators from installing the program, setting up new mailboxes in existing Exchange instances, or making other configuration changes. More...

Your Data Can be Stolen on Airport Wireless Networks

Researchers from AirTight Networks visited 14 airports around the world and discovered that most business travelers aren't taking the basic steps necessary to protect sensitive data. More...

Counterfeit Cisco gear threatens network security

The equipment included counterfeit network hardware, in particular network routers, switches, network cards and modules manufactured by Cisco. More...