Zero Day

Syndicate content
Updated: 12 min 4 sec ago

Google tops comparative review of malicious search results

10 hours 36 min ago

A two-month study by Barracuda Labs, reviewing more than 25,000 trending topics and 5.5 million search results, names Google as the most popular search engine used by malicious attackers relying on poisoned keywords.



Hacker breaks into ATMs, dispenses cash remotely

Thu, 2010-07-29 03:18

Using home-brewed software tools and exploiting a gaping security hole in the authentication mechanism used to update the firmware on automated teller machines (ATMs), a security researcher hacked into ATMs made by Triton and Tranax and planted a rootkit that dispensed cash on demand.



Apple patches Safari Auto-Fill security hole

Wed, 2010-07-28 22:30

Apple has shipped a major Safari browser update to fix 15 documented security holes, including a known flaw in the browser’s AutoFill Web Forms feature that can be hacked to steal data from the computerâs address book.



Microsoft ships anti-exploit tool for IT admins

Wed, 2010-07-28 22:07

The tool, called Enhanced Mitigation Experience Toolkit (EMET) works by applying security mitigation technologies to arbitrary applications to block against exploitation through common attack vectors.



Middle East countries: the BlackBerry is a national security threat

Wed, 2010-07-28 21:29

The United Arab Emirates (UAE) has described RIM’s device as a threat posing “serious social, judicial and national security repercussions” due to the country’s inability to successfully eavesdrop on users, and the fact that transmitted data is stored offshore. Does the BlackBerry really pose a threat to national security?



Adobe joins Microsoft's vulnerability-sharing club

Wed, 2010-07-28 21:18

Adobe will give anti-virus, intrusion prevention/detection and corporate network security vendors a headstart to add signatures and filters to protect against security flaws in its widely deployed product suites.



A Special Offer From Our Sponsor

Wed, 2010-07-28 21:18

Microsoft at Black Hat: Community-based defense in force

Wed, 2010-07-28 18:30

Microsoft’s Matt Thomlinson argues that community-based defense is important to fight cybercrime and stay ahead of malicious hacker attacks.



Google plugs 'high risk' Chrome security holes

Wed, 2010-07-28 00:19

Google has shipped a new version of its Chrome browser to fix three high-risk security holes that expose web surfers to malicious hacker attacks.



Indefinite vulnerability secrecy hurts us all

Tue, 2010-07-27 20:17

Michal Zalewski: Indefinite vulnerability secrecy hurts us all by removing all real incentives for improvement, and giving very little real security in return.



Microsoft: No plans to pay for security vulnerabilities

Fri, 2010-07-23 18:47

A Microsoft security official dismissed any suggestion that the company would start buying rights to security flaws, arguing that its current system of crediting hackers in security bulletins is working very well.



Apple Safari 'AutoFill' allows data theft

Thu, 2010-07-22 20:36

A prominent security researcher is urging users of Apple’s Safari browser to immediately turn off the AutoFill feature to block hackers from stealing sensitive information.



Cisco plugs gaping hole in Content Delivery System

Thu, 2010-07-22 17:32

An unauthenticated attacker may be able to exploit this issue to access sensitive information, including the password files and system logs, which could be leveraged to launch subsequent attacks.



MS ships temporary 'fix-it' for Windows shortcut zero-day attacks

Wed, 2010-07-21 21:55

Microsoft has released a “fix-it” tool as a stop-gap to block ongoing zero-day attacks against a new code execution flaw in Windows Shell.



Hide and seek the backdoor: Let's play a game

Wed, 2010-07-21 19:08

The CoreTex Competitions Team is launching a contest at this year’s DEFCON conference. The goal: To hide and find backdoors in software products.



Dell ships motherboard with malicious code

Wed, 2010-07-21 18:37

Dell has confirmed that some of its PowerEdge server motherboards were shipped to customers with malware code on the embedded server management firmware.



Firefox hit by drive-by download security holes

Wed, 2010-07-21 17:16

Mozilla has shipped a mega patch for Firefox to fix a total of 16 security flaws that expose Web surfers to drive-by download, data theft and local bar spoofing attacks.



A Special Offer From Our Sponsor

Wed, 2010-07-21 17:16

Apple plugs critical iTunes security hole

Tue, 2010-07-20 19:28

Apple has shipped a critical iTunes update to fix a security vulnerability that exposes Windows users to malicious hacker attacks.



Adobe adding 'sandbox' to PDF Reader to ward off hacker attacks

Tue, 2010-07-20 18:43

The next major version of Adobe’s PDF Reader will feature new sandboxing technology aimed at curbing a surge in malicious hacker attacks