You might expect better from Tesla and Elon Musk but apparently you would be dissappointed as the OAuth token in your cars mobile app is stored in plain text. The token is…
Read More
Managing mobile devices in an enterprise environment is a nightmare, even with properly set up security polices and some sort of Mobile Device Manager. Security firm Skycure recently estimated one in every…
Read More
For the past few years we have heard about some rather horrific security vulnerabilities in hospitals and sadly this has not changed at all. Indeed many hospitals are still on...
Read More
Upsetting news today from GeoEdge, not only is HTML5 not going to prevent drive by infections from ads but it also turns out that Flash was nowhere near as responsible for these…
Read More
With the lousy news below the fold, up to and including yet another StageFright exploit, here is a bit of amusing news to balance out the bad. A recently unleashed ransomware program…
Read More
Compromised ad servers have been pushing out ransomware directly to unwitting users of many popular domains. As reported by Ars Technica (via MalwareBytes and others), whose story is heavily referenced here, the...
Read More
The Microsoft Malware Protection Center has announced that, on March 31st, 2016, certain types of advertisement-injection will be reclassified as malware. This does not include all forms...
Read More
A report from Paul Thurrott draws an uncomfortable comparison between the behavior of Samsung's notebook software and the recent Superfish controversy, and should be cause for concern for anyone using Samsung laptops…
Read More
Since 2014 Lenovo has been selling consumer laptops installed with an innocuously named program, Superfish. For those not in the habit of wiping their laptop and installing the OS fresh to avoid…
Read More
A newly discovered flaw in the handling of TIFF image files effects machines running Windows Vista or Server 2008 as well as Office 2003 to 2010 and Microsoft Lync products on WinXP…
Read More
Sometimes I like to cleanse the palette with a lighthearted feel-good story. A little over a year and a half ago, Department of Homeland Security (DHS) alerted the Economic Development Administration (EDA)…
Read More
Vobfus has been around the block a few times, some Visual Basic code that first popped up in 2009 which tried to download and install code to attack machines that managed to…
Read More
Just in case you weren't already getting tired of captchas there is a new click-jacking technique which works on both IE9 and 10 in Windows 7 and also on Chrome for Windows…
Read More
If you consider your browser security based solely on whether it will allow you to manually download a malicious executable: IE10 is the best browser ever! Rod Trent over at Windows...
Read More
The good news for Samsung last year is that it bought $23.9bn worth of semiconductor orders in 2012, while Apple ordered a mere $21.4bn which implies that Samsung is buying more chips…
Read More
Just in time for last minute Christmas shopping comes malware designed to infect POS machines and record any PIN and credit card information stored on the machine. The US, the UK, and…
Read More
Recent statements from Microsoft show that they are not afraid to wait a little bit before shipping patches with their bundled Flash in Internet Explorer 10. The issue is more contained than…
Read More
PCMag and others have released articles based on a blog post from Sophos. The original post discussed how frequently malware designed for Windows is found on...
Read More