Home Area 51 Security Browsers & OS Internet Explorer

Latest News



Popular of Late

Internet Explorer

Hackers break SSL encryption used by millions of sites

20 September 2011

MalwareEverybody, please read and pay attention. Also, spread the word!

Researchers have discovered a serious weakness in virtually all websites protected by the secure sockets layer protocol that allows attackers to silently decrypt data that's passing between a webserver and an end-user browser.

The vulnerability resides in versions 1.0 and earlier of TLS, or transport layer security, the successor to the secure sockets layer technology that serves as the internet's foundation of trust. Although versions 1.1 and 1.2 of TLS aren't susceptible, they remain almost entirely unsupported in browsers and websites alike, making encrypted transactions on PayPal, GMail, and just about every other website vulnerable to eavesdropping by hackers who are able to control the connection between the end user and the website he's visiting.

Read the entire article.

Comments

First critical Internet Explorer 9 security patch due next week

09 June 2011
Untitled document

IEAhhhh...now I feel better. A patch to save me from the bad folks. Always a good thing...

Microsoft revealed on Thursday that it plans to patch Internet Explorer 9 for the first time since its release.

The software giant issued its advanced security bulletin notification for June, which includes a total of 16 bulletins. Bulletin 8, identified only as a critical remote code execution vulnerability, affects Internet Explorer 9 on Windows Vista, WIndows Server 2008, Windows 7 and Windows Server 2008 R2. The bulletin marks the first time that Internet Explorer 9 has been affected by a security flaw.  

Read more about it...

Comments

Phishers use HTML attachments to evade browser blacklists

18 March 2011 Last Updated on 12 June 2011
Untitled document

network-securityThose bastards! 

To get around phishing blacklists in browsers, scammers are luring people by using HTML attachments instead of URLs, a security firm is warning.

Chrome and Firefox are good at detecting phishing sites and warning Web surfers via a browser notice when they are about to visit a site that looks dangerous. So good, in fact, that scammers are resorting to a new tactic to lure victims into their traps via e-mails--attaching HTML files that are stored locally when they are opened, according to an M86 blog post yesterday. 

news.cnet.com has the article

Comments

‘Most Dangerous Trojan Virus Ever’ Steals Over $1 Million

13 August 2010 Last Updated on 08 June 2011
Untitled document

brown-nosing-3That's it... all my cash is going BACK into my mattress!

It is like the plot of a Hollywood movie, only the bad guys are definitely winning so far. Earlier this week, the internet security group M86 uncovered a Trojan virus targeting an unnamed financial institution in the UK. The “Zeus Trojan” has already siphoned off over $1 million from over 3,000 British customers between July 5 and August 4, and it shows no signs of stopping.

The thefts were discovered after M86 gained access to the command-and-control server in the Eastern Europe country of Moldova. As for the money, M86 could not give an exact location for where it was going, other than to suggest that it was heading into the former Soviet states- which likely meant that the money was going to the Russian mafia, or another Eastern European gang.

digitaltrends.com has the article

Comments

1,000+ webpages poisoned in latest mass malware hack

14 June 2010 Last Updated on 07 June 2011
Untitled document

hacker2It gets worse and worse damn near daily.

Yet another mass compromise is hitting poorly configured websites, and at least one of the afflicted is a security site that plays up its prowess in warding off the very type of attack it has been smitten by.

At least 17 pages on idera.com were hit by a quick-moving SQL injection attack on Friday, including one titled “Understanding SQL Server Security Options,” according to this [1] Google search.

Comments
Read more...

Login Form