Attention Marketers: Access 30 Million IT Decision Makers with ECT News Network's INSTA-LEADS ˇ Click to Learn More!
Welcome Guest | Sign In
TechNewsWorld.com
CyberSource Peak Season Fraud Management Guide
Wristband Heads Off Password Headaches
November 25, 2014
Has software glut got you down? Do you reuse passwords because creating unique ones for all your online accounts would cause a memory overload? If so, you may be interested in a bit of jewelry called the "Everykey," by a startup with the same name. Everykey is a wristband that removes the need to remember the countless log-in credentials we use every day.
EFF Spearheads Safer Web Initiative
November 24, 2014
The Electronic Frontier Foundation has announced a nonprofit organization that will aim to secure the entire Web. Let's Encrypt, starting in summer 2015, will offer free server certificates to help websites transition from HTTP to the more secure HTTPS protocol. EFF is partnering with Akamai, Mozilla, Cisco, iDenTrust and University of Michigan researchers.
NotCompatible Mobile Malware Gets Badder
November 21, 2014
A new version of the NotCompatible malware, which first appeared in 2012, is bigger, badder and pretty much indestructible, Lookout Security reported. And it can compromise corporate networks, thanks to the BYOD trend. The malware, called "NotCompatible C," focuses on Android devices. The NotCompatible Trojan is used to spread spam campaigns, among other nefarious activities.
Citadel Trojan Adds Keylogging to Arsenal
November 21, 2014
Cybercriminals are using a new version of the dangerous Citadel Trojan, which has been employed to attack the financial and petrochemical industries, to compromise password and authentication solutions, IBM Trusteer has reported. The new version begins capturing keystrokes, or keylogging, when some processes are running. It was discovered on a server that already had been infected.
Russian Site Exposes Thousands of Private Videocam Streams
November 20, 2014
A Russian website has been posting live video streams from unprotected webcams in homes and businesses around the globe, Britain's Information Commissioner's Office warned on Thursday. The website has gained access to the webcams using the cameras' default login credentials, which are freely available online but often don't get changed by their owners during the set-up process.
BitTorrent Sync Goes Pro
November 20, 2014
BitTorrent on Wednesday announced new plans for its Sync service, including a premium subscription option, along with other new paid products. Sync, which was released in beta in July, is billed as a cloud-free file-sharing solution. Currently in version 1.4, Sync soon will graduate to version 2.0, with both an improved free version and a Pro version offered by subscription for $39.99 per year.
WhatsApp Battens Down the Hatches
November 19, 2014
WhatsApp has added end-to-end encryption and enabled it by default in the latest version of its Android messaging application, partner Open Whisper Systems announced Tuesday. The new feature taps Open Whisper's open source TextSecure encryption protocol to ensure that only a conversation's participants can read the messages they exchange. WhatsApp itself won't be able to decrypt the messages.
China Suspected in Attacks on USPS, NOAA
November 19, 2014
The U.S. Postal Service and National Oceanic and Atmospheric Administration last week confirmed that their computer systems were targeted in months-long cyberattacks that appear to have originated in China. The attack on USPS compromised information of an estimated 800,000 employees. Data at risk includes names, date of birth, Social Security numbers, addresses and dates of employment.
Researchers Shine Spotlight on OS X/iOS Masque Attack
November 12, 2014
Researchers at FireEye on Monday made public the existence of the Masque Attack, which threatens iOS and Mac OS X operating systems. Masque Attack exploits a flaw in Apple's OSes that allows the replacement of one app by another so long as both apps use the same bundle identifier. All apps, except those preinstalled on iOS, such as Mobile Safari, can be replaced.
USPS Employees, Retirees, Customers Exposed in Hack Attack
November 11, 2014
Hackers siphoned off data from United States Postal Service servers for more than eight months before being detected, the USPS said. The personal data -- including names, dates of birth, Social Security numbers, addresses, beginning and end dates of employment and emergency contact information -- of more than 800,000 employees and some retirees has been exposed.
New Tool Alerts Etailers to Suspicious Characters
November 11, 2014
As thoughtful as mobile phone makers are when they design their products, there are always punters who want something that isn't there and are willing to hack a device to get it. In the Android world such a hack is called "rooting" a phone; in the iOS world, it's called "jailbreaking." Regardless of what it's called, it can turn a phone into a can of worms for retailers.
Phishers' Attacks Pay Off Nicely: Report
November 10, 2014
The most successful phishing attacks manage to dupe their victims a full 45 percent of the time, according to a study released last week by Google. On average, phishing's success rate is about 14 percent, but even the most obvious scams still manage to lure 3 percent of the people targeted to a fake website and convince them to turn over personal information, the report found.
Apple-Pestering WireLurker Banished for Now
November 07, 2014
Palo Alto Networks on Wednesday reported that more than 400 apps infected with a malicious program it calls "WireLurker" have been downloaded 356,104 times by Chinese Mac owners from Maiyadi, an online app store unaffiliated with Apple. The malware does no harm to the Macs it infects but when the computer connects via USB to an iOS device -- an iPhone or iPad -- it delivers its malicious payload.
Scorecard Reveals 'Messaging App Security' Is an Oxymoron
November 06, 2014
The Electronic Frontier Foundation on Tuesday released its Secure Messaging Scorecard, which rates messaging app security. Only six of more than three dozen tools the organization audited met all seven security requirements. They are ChatSecure, CryptoCat, Signal/Redphone, Silent Phone, Silent Text and TextSecure. Apple's iMessage and FaceTime were the best of the mass-market options.
Starwood's Keyless Entry Streamlines Hotel Check-In
November 04, 2014
Starwood Hotels and Resorts Worldwide -- which owns and manages a number of high-end hotel brands including the St. Regis, The Luxury Collection, W, Westin, Le Méridien, Sheraton, Four Points by Sheraton, Aloft and Element -- has announced the rollout of SPG Keyless, a tech offering that allows guests to use their smartphone as a room key. Hilton introduced similar technology earlier this year.
Dropbox, Microsoft Gang Up on Google
November 04, 2014
Microsoft on Tuesday announced a strategic partnership with Dropbox -- only eight days after announcing unlimited cloud storage for Office 365 subscribers in a move widely seen as a frontal attack on Dropbox and Google. The companies will integrate their services forphones, tablets and the Internet, so that users can access and collaborate on Office files either from Dropbox or Microsoft Office.
Gallup Poll: Credit Card Hacking Could Happen to Me
November 03, 2014
Over the 4th of July weekend, 82 people were shot in Chicago -- at least 14 died from their wounds. For the year, there were 63 homicides in Oakland as of late October. Philadelphians logged 47 homicides in the first 64 days of this year, two more than were killed in New York City during the same period. Yet results of a recent Gallup poll suggest the threat of credit card theft looms largest.
Apple Pay vs. CurrentC: Prelude to the Beacon Wars
October 30, 2014
The current dustup between Apple Pay and CurrentC is a stark, bleak mess. That's not because Apple promises an easier, more secure way of making a smartphone-based retail transaction. Nor is it because CurrentC wants to harvest data on you and provide behavior-bending coupons, incentives and special deals, while cutting out the middleman credit card processing industry. It gets worse.
Mobile Malware Takes Victims by Surprise
October 28, 2014
Malware writers behind Koler, a bad app that attacks Android devices, have upped their game with a new variant of the pernicious program. In its original version, Koler hijacked phones it landed on and wouldn't set them free until a ransom was paid. This latest strain of the malapp also does the ransomware thing, but it takes its malignancy a step further.
Some Apple Pay Users Get Double-Billing and Double-Talk
October 22, 2014
Shortly after Apple Pay's Monday launch, some eager early users were unsettled to see duplicate charges on their accounts. Apple Pay lets iPhone 6 or iPhone 6 Plus users store credit card information on their devices and then pay for products using tap-to-pay terminals in stores, or via apps when shopping online. However, in some cases, it appears to be dinging consumers' accounts twice.
Staples May Be Next to Wear Data Breach Scarlet Letter
October 21, 2014
Yet another major retailer -- this time, office supply chain Staples -- reportedly has fallen victim to a data breach. More than half a dozen banks operating on the East Coast have seen fraudulent charges made at non-Staples businesses, such as supermarkets and other big-box retailers, by people using Staples cards. Those cards apparently were used previously at three Staples stores in the area.
Chinese Officials Kick In Apple, MS Cloud Doors
October 21, 2014
Chinese authorities have launched man-in-the-middle attacks on Apple's iCloud.com and Microsoft's Login.live.co that are ongoing, according to Greatfire.org. Qihoo 360 browser users' local connections to iCloud.com are being rerouted to a dummy site that's identical to Apple's login page. Users of Firefox or Chrome land on a warning page instead. The attack on iCloud reportedly is nationwide.
Black Box Keeps Cybersnoops in Dark
October 21, 2014
Following Edward Snowden's revelations about indiscriminate government snooping on U.S. citizens, many Net surfers would like to find a way to lower their visibility on the Internet. There are a number of tools in cyberspace that can help a soul do that, but they can take time and savvy to set up. That's why Kerry Cox launched the Sierra Project, which he hopes to fund through Kickstarter.
Apple Pay Aims to Make Plastic Passé
October 20, 2014
Apple on Monday launched its Apple Pay mobile payment system in the U.S., for use with Apple's latest iPhones and to a limited extent its new iPads, as well. Apple Pay allows purchasing transactions to be performed with a phone swipe -- as long as a retailer has the right hardware. Purchases within apps can be completed using only the Touch ID fingerprint reader.

See More Articles in Consumer Security Section >>
Facebook Twitter LinkedIn Google+ RSS