More Malware and Vulnerabilities In Depth

Red Alert for Child Pornography

A .mov file with a highly suggestive name is enough to kick off an investigation into what's on an employee's PC.

Who's Got Your Mail?

When a chance discovery reveals that anyone in the company can access one executive's email, the brainstorming begins.

Lessons for IT, Apple in Flashback brouhaha

Although the number of Flashback-infected Macs is on the decline, the reverberations from the outbreak will affect Apple and the businesses that have increasingly adopted Macs. Columnist Ryan Faas explains.

Why Switching OS Platforms Is Not a Security Fix

It has been a rallying cry against Microsoft Windows for years: to avoid malware and security issues, just stop using Windows. The mantra has traditionally been embraced by both Mac and Linux users, but as Mac OS X users deal with the fallout from the Flashback malware attack, some Linux supporters are turning the tired attack even against the Apple OS.

Apple Flashback Malware Removal Includes Innovative Approach to Reducing Risk for Macs

Better late than never? Apple has released the third Java update in a week for Mac OS X, and this one contains the tool to remove the Flashback malware from infected systems. Beneath the belated fix to help users eradicate the threat, Apple has introduced a proactive approach to reducing security risk that other vendors should take note of.

Make Web Apps More Manageable With Minimalist for Everything

Google Reader and Gmail are two of the most customizable Web apps available today. Need a different inbox layout? Sure thing. Want to change the colors or visual density? No problem. Still, some interface elements, like the Google Bar at the top of the window, will never go away, no matter what you do. If you wish they did, try free Chrome extension Minimalist for Everything.

The Macalope Weekly: Living in denial

It's a terrible thing to live in denial. If the Winotaur had an ounce of self-awareness he could tell you. Google's also living in denial if it thinks we're putting its dorky glasses on to watch their ads. And get ready for this week's magical after-school special ending, because some of you Mac users are in denial, too.

Mac Malware Outbreak Is Bigger than 'Conficker'

An estimated 600,000 or more Macs are currently compromised and part of a massive botnet thanks to the Flashback Trojan. To put the size of the threat in some perspective, the Flashback Trojan botnet is even bigger than the massive Conficker botnet...relatively speaking.

Security Manager's Journal: When executives want to be above the law

Security policies work best when they apply equally to everyone in the company. Of course, there are always some people who think they should be exceptions.

Researcher releases exploit code said able to crash pcAnywhere

Exploit code targeting a newly identified vulnerability in Symantec's pcAnywhere computer remote control product has been published on the Internet, exposing its users to possible attacks that disrupt the software's functionality.

Best Security Suites: PC Bodyguards

Have security suites reached the point where they all work?

How smarter hypervisor use can lead to a 'big, big change' in security

To gain insight on the months ahead as they relate to IT attacks, malware, cloud security, and the impact of virtualization on security, we recently chatted with Simon Crosby, former CTO of Citrix Systems' data center and cloud business. Crosby recently founded a cloud security startup, Bromium, with Guarav Banga, former CTO and senior vice president at Phoenix Technologies, and Ian Pratt, chairman of Xen.org and co-founder of XenSource.

Fundamental Oracle flaw revealed

A design decision made by Oracle architects long ago may have painted some of Oracle's largest customers into a corner. Patches have arrived, but how much will they correct?

2012 Outlook: The end of everything?

Gibbs reviews last year's predictions and sees that the end could be nigh ...

Flaw in web app frameworks pushes Microsoft to patch ASP.net promptly

Many web app frameworks are vulnerable to a denial-of-service attack targeting the way they handle hash tables, researchers revealed Wednesday, prompting Microsoft to announce an "out-of-band" patch for its ASP.NET platform just hours later.

How stupid can cell carriers be? Really Stupid.

The recent revelation that most of us are carrying around smartphones with embedded rootkits is both surprising and not so surprising. It's surprising because it makes you wonder, "How stupid can the carriers be?" It's not surprising in that we know the answer to that.

When Cybercriminals Attack

Criminal hackers are industrious -- they stay up late devising new ways to attack individuals and businesses. Watch out for cyberattacks that can turn smartphones into spam bots, shut off electricity to homes and businesses, jam GPS signals and more.

Stupid hacker tricks: Exploits gone bad

Taunting tweets, provocative pics, iPad-spam chats -- stupid slip-ups lead to high-profile hacker arrests

Hacktivism: The fallout from Anonymous and LulzSec Part 2

Caveat Vendor

Hacktivism: The fallout from Anonymous and LulzSec Part 1

Like the mutant offspring of Captain Jack Sparrow and French anarchist Pierre Proudhon -- famous for his 'property is theft' claim -- activist hacking group LulzSec surfed the Web spreading debonair charm, chaos and reckless acts of 'hacktivism' in equal measure.