Network Security Topic Center

Network security news, features, advice and more to help you protect your IT systems

Researchers find unusual malware targeting Tibetan users in cyberespionage operation

Security researchers from antivirus vendor ESET discovered a piece of cyberespionage malware targeting Tibetan activists that uses unusual techniques to evade detection and achieve persistency on infected systems.
Read more...

U.S. power companies under frequent cyberattack

A survey of U.S. utilities shows many are facing frequent cyberattacks that could threaten a highly interdependent power grid supplying more than 300 million people, according to a congressional report.

Researchers find critical vulnerabilities in popular game engines

Security researchers found serious vulnerabilities in the engines of several popular first-person shooter video games that could allow attackers to compromise their online servers and the computers of players accessing them.

Telenor cyberespionage attack has Indian origins

A recent intrusion on the computer network of Norwegian telecommunications company Telenor was the result of a large cyberespionage operation of Indian origin that for the past few years has targeted business, government and political organizations from different countries, according to researchers from security firm Norman Shark.

Systems manager arrested for hacking former employer's network

A 41-year-old man was arrested for allegedly disrupting his former employer's network after he was passed over for promotions, leading him to quit his job and take revenge, the FBI said.

Printers, routers used as bots in DDoS attacks

Printers, routers, IP cameras, sensors and other Internet-connected devices are increasingly used to launch large distributed denial of service attacks, security firm Prolexic warned in a report this week.

IRS going against privacy tide on warrantless email search

The Internal Revenue Service (IRS) has taken the position it does not need a search warrant to gather email in criminal investigations, despite opposition from lawmakers and privacy advocates and a ruling by a federal appellate court.

Hackers could start abusing electric car chargers to cripple the grid, researcher says

Hackers could use vulnerable charging stations to prevent the charging of electric vehicles in a certain area, or possibly even use the vulnerabilities to cripple parts of the electricity grid, a security researcher said during the Hack in the Box conference in Amsterdam on Thursday.

Sophos fixes flaws in its Web security appliance

Security vendor Sophos has released an update for the software used on its Web gateway security appliance in order to address three serious vulnerabilities in the product's Web-based user interface.

Bitcoin storage service, Instawallet, suffers database attack

An online bitcoin storage service, Instawallet, said Wednesday it is accepting claims for stolen bitcoins after the company's database was fraudulently accessed.

Hacked burger tweets draw cybercrowds

"There's no such thing as bad publicity"

Chinese Government's Link to Cyber Espionage Clearer Than Ever

It's a common belief in the information security world that the Chinese government is behind many of the advanced persistent threats that target companies around the world in an effort to steal their IP and trade secrets. Now one security firm has come forward with years of evidence to link a prolific APT group to a unit inside the Chinese government.

Unseen, all-out cyber war on the U.S. has begun

Security pros and government officials warn of a possible cyber 9/11 involving banks, utilities, other companies, or the Internet

Samba 4 review: No substitute for Active Directory -- yet

Samba's open source alternative to Microsoft's domain controller is a good start, but not ready for prime time

What developers can learn from Anonymous

The reason Anonymous has a permanent place in our collective imagination: For a time, its organizational model worked very well

ATM fraud refunds may not come quickly, if at all

In early April, A$800 vanished from my account, the result of a late-night withdrawal from a cash machine in a Sydney neighborhood I'd never been to before.

Red Sky Alliance: An experiment in information sharing

Chris Camacho, information security officer at The World Bank Group in Washington D.C., explains how the Red Sky alliance helps member organizations safely share information.

Review: 7 password managers for Windows, Mac OS X, iOS, and Android

1Password and KeePass lead the field in features, flexibility, browser integration, and ease-of-use

How security can add value to DevOps

Gene Kim, award-winning entrepreneur, researcher and founder of security firm Tripwire, walks us through his vision.

Security Manager's Journal: BYOD Planning Gets a Boost

A virtual desktop infrastructure will be the security key to reaching the CIO's goal of allowing personal devices on the corporate network.