Security

Expert security suite reviews, firewalls, encryption, spam blockers, ad blockers and price comparisons on products from all the top brands including, Norton, PC Tools, ZoneAlarm and AVG.

Google to kill off SSL 3.0 in Chrome 40

In the meantime, Chrome 39 will no longer support SSL 3.0 fallback for TLS connections

Hackers

See no evil, hear no evil, speak no evil

The icky part of tech support: Porn and other NSFW surprises

The help desk can be caught in the middle in more ways than one when users put risqué material on their personal devices

Vulnerabilities found in more command-line tools, wget and tnftp get patches

Flaws identified in wget and tnftp allow malicious servers to execute rogue commands on users' systems

serverskulls header

Advisory says to assume all Drupal 7 websites are compromised

Drupal urged users to apply an update on Oct. 13, but only those who patched within seven hours may be in the clear

Facebook gives away homebrewed OS monitoring tool

Osquery watches for operating system state changes that might indicate a security issue

Linux broken chain

Parallels CTO: Linux container security is not the problem

James Bottomley of Parallels, a key contributor to containerization on Linux, pushes back on security claims and other criticisms

globe with world map and circuit board in background digital 200213603 001

The big one: The makings of a global cyber attack

Surprise -- the underlying technology matters less to an attack's success than basic human determination

Tor Project flags Russian 'exit node' server delivering malware

The server used a technique to append malware to legitimate code

Cyber espionage group launches sophisticated phishing attacks against Outlook Web App users

Pawn Storm attacks target military agencies, embassies, defense contractors, and media organizations, Trend Micro says

Clueless FBI sabotages its own anti-encryption campaign

FBI Director Comey says smartphone encryption puts law enforcement in peril. Too bad he doesn't seem to understand technology

Apple to stop SSL 3.0 support for push notifications next week

Apple is one of many companies moving to shut down the vulnerable encryption protocol for good

Windows 10 to get two-factor authentication built-in

The new OS will feature enhancements in areas like identity protection, data security and malware resistance

cybersecurity lock touch worker man

Security jobs are hot, thanks to the Internet of things

Security certifications are soaring in value as thousands of new jobs are there for the taking

cybersecurity lock touch worker man

Microsoft misses Windows bug, hackers slip past patch

Last week's security update 'not robust enough,' say researchers who co-reported flaw

Microsoft discloses zero-day flaw in PowerPoint, publishes quick fix

Attacks are under way using a PowerPoint flaw that affects nearly all versions of Windows, the company says

One week after patch, Flash vulnerability already exploited in large-scale attacks

The Fiesta exploit kit bundles an exploit for the CVE-2014-0569 vulnerability in Flash Player, researchers found

Man yelling screaming with data streaming out of megaphone

Enough! Stop hyping every new security threat

Logos for malware? Really? Security vendor marketing wizards are going insane

Patch

Microsoft warns users to kill botched KB 2949927 patch

Microsoft yanked SHA-2 patch KB 2949927, and now goes further and cautions users to uninstall the update

Microsoft yanks botched patch KB 2949927, re-issues KB 2952664

Windows 7 upgrade compatibility patch gets a tweaked installer, while the SHA-2 hashing patch is summarily removed without explanation

Load More