security

NSA exploited Heartbleed for two years claim insiders [Updated]

NSA exploited Heartbleed for two years claim insiders [Updated]

The NSA has not only known about the Heartbleed bug for at least two years, but exploited it in regular surveillance attacks, insider sources have alleged, opting to keep the security flaw a secret because of its value to intelligence gathering. Heartbleed, which has forced companies big and small to update the security of their sites after a flaw in the SSL believed to be keeping users' details safe, has prompted a mass change in passwords over the past week.

Continue Reading...

Apple unaffected by Heartbleed, adds to sites patched list

Apple unaffected by Heartbleed, adds to sites patched list

This week the folks at Apple have added to the stacks of sites making clear that they were either unaffected by the Heartbleed bug or have been patched successfully. Apple has released a statement that suggests they "take security very seriously" and that iOS and OS X "never incorporated the vulnerable software" in the first place. They also made clear that "key web-based services were not affected" either.

Continue Reading...

Google adding continuous rogue Android app scans

Google adding continuous rogue Android app scans

Google is updating Android to continuously check phones and tablets for rogue apps, picking out those with malware behavior even if they've managed to squeeze through the initial verification. The new feature, which builds on Android's existing "Verify apps" system that sifts through software at the point of installation to flag up any concerns, will add real-time and ongoing checks.

Continue Reading...

Heartbleed bug coder: it was a mistake

Heartbleed bug coder: it was a mistake

There should have been little doubt that once the Heartbleed bug was realized, one of the first things the public was going to do was go on a witch hunt for the person or people responsible. As it were, Mr. Robin Seggelmann of Münster in Germany says that he was only aiming to improve OpenSSL, and all allegations that he may have introduced the bug on purpose are false.

Continue Reading...

Heartbleed bug: vulnerable and patched sites chime in

Heartbleed bug: vulnerable and patched sites chime in

When you think about the scope of the Heartbleed bug, you have to consider that it was (and is) allowing hackers to see data - any data - stored on servers. This data vulnerable to CVE-2014-0160 (aka Heartbleed) is not limited to certain kinds of data - it’s anything and everything. So what’s to be done?

Continue Reading...

Piper smart home camera snapped up by iControl

Piper smart home camera snapped up by iControl

Crowdfunding success and smart home startup Piper is likely headed to more homes after being acquired by security and home automation firm iControl, which aims to target the tech at renters and other installation-shy users. Piper, launched on Indiegogo last year, is a combination security webcam and home automation hub, allowing remote access of streaming video as well as the ability to control appliances and lights through plug-in wireless modules.

Continue Reading...

Heartbleed test extension keeps hacker bug at bay

Heartbleed test extension keeps hacker bug at bay

Supposing you’re aware of the Heartbleed bug - which has been patched in many locations around the web already - you know that it’s a massive deal in the internet security universe. It’s left massive portions of the web open for hacking for two whole years, and it’s only being patched by most of the web this week. As luck would have it, there’s something you can do on your end this week as well to keep safe as an average web user.

Continue Reading...

Heartbleed bug: how to avoid this massive web hack

Heartbleed bug: how to avoid this massive web hack

Since a fix was released yesterday, a bug has been crawling around the internet for a staggering two years. Introduced to glom on to the system known as OpenSSL back in December of 2011 and in the wild since Open SSL v1.0.1, this bug has been on the web since the 14th of March, 2012. But why was it only made apparent this week, and what can you do?

Continue Reading...

Prev 1 2 3 4 5 6 Next