Security

Expert security suite reviews, firewalls, encryption, spam blockers, ad blockers and price comparisons on products from all the top brands including, Norton, PC Tools, ZoneAlarm and AVG.

key in lock

OpenSSL tells users to prepare for a high severity flaw

Patches will be released on July 9 for a high severity vulnerability in OpenSSL's widely used cryptographic library


caped superhero

In the security world, the good guys aren't always good

It's hard enough to fix Internet security without bad behavior from many of the entities that are supposed to be protecting our interests

midlife crisis

Is the information security industry having a midlife crisis?

The information security industry is hot right now, but it's hot because it's failing

Amazon releases open source cryptographic module

The s2n module could serve as a leaner replacement for the OpenSSL TLS module

Google encryption concept browser

Compromised encryption is a threat to national security

The administration is floating a trial balloon suggesting that national security requires giving up the protection provided by strong encryption. This approach gets the issue wrong. When the situation calls for encryption, using...

encryption

Amazon's s2n encryption library aims to be small, light, and auditable

New open source encryption library is meant to be easy to implement as well as easy to audit for security issues

Cisco plans to buy security-as-a-service provider OpenDNS

OpenDNS provides Web filtering and malware protection services to 65 million users

keys

4 fatal problems with PKI

The Web's security runs on complicated PKI deployments, few of which are implemented correctly, and all of which will soon be at the mercy of Moore's Law

Cyber criminals adopt recently patched zero-day exploit in a flash

It only took four days for a recently patched vulnerability in Flash Player to start being used in large-scale attacks

whisper shh quiet mouth lips men antique vintage secret

Microsoft quietly pushes 17 new trusted root certificates to all Windows systems

The aging foundation of Certificate Authorities shows yet another crack as security experts are caught unaware

Software developers are failing to implement crypto correctly, data reveals

Lack of specialized training for developers and crypto libraries that are too complex lead to widespread encryption failures

gun laptop ransom

Report: Clickfraud malware a gateway to other threats

Malware that secretly clicks on ads to defraud advertisers might seem generally harmless, but is often just the first invader of a potentially long chain of more serious infections

samsunglaptop
Update

Samsung sneakily disables Windows Update on some PCs

The switch supposedly helps maintain driver compatibility, but raises security concerns in the process

Critical flaw in ESET products shows why spy groups are interested in antivirus programs

The flaw could allow attackers to fully compromise systems via websites, email, USB drives, and other methods

Adobe patches zero-day Flash Player flaw used in targeted attacks

The vulnerability has been exploited by a China-based cyberespionage group for several weeks, security firm FireEye says

Hammer breaks glass

HP drops the hammer on unpatched IE11 vulnerability

Microsoft refuses to patch 32-bit Internet Explorer, so HP's Zero Day Initiative responds with full proof-of-concept code

middle manager

Phishers targeting middle management

Phishing scammers have busy middle managers in their crosshairs. Here’s how to avoid being a victim

computer security stock image

Prepare for the big digital cert swap -- or else

In a year or two, SHA-1 certificates will be rejected across the Internet. Now's the time to plan your migration from SHA-1 to SHA-2 and avoid a crisis

data breach

7 things to do when your business is hacked

Hint: Success of the incident response team will depend heavily on the preparation done before the breach

Load More