Imminent threats
Zscaler researcher finds scanning flaw in HP all-in-one printers
September 1, 2010
A cybersecurity researcher has discovered an easy way for a hacker to swipe copies of documents scanned by Hewlett-Packard all-in-one printers widely used in workplace settings.
Michael Sutton, Vice President of Security Research at Zscaler Labs, outlines in this blog post how a feature, called WebScan, that’s enabled by default on countless HP all-in-one printers, can be activated remotely to transmit copies of a scanned document over the …More
Apple criticized for minimizing iTunes hijacking
August 25, 2010
Apple is coming under fire for sticking with a consumer online transactions system that is easily hijacked.
At issue is iTunes, the payment hub for Apple’s online sales of music, video and apps for iPods, iPhones and iPads. Turns out that hijacking an iTunes account is very straight forward. For at least the past year, iTunes hijackers have been buying stolen usernames and passwords from phishers and …More
Spanair crash shows deadly result of using tainted USB stick
August 22, 2010
A virus-carrying USB thumb drive has been implicated in the 2008 crash of a Spanish jetliner, the deadliest air disaster in Spanish history.
Packed with vacationers, Spanair Flight JK5022 smashed into the ground shortly after takeoff from Madrid’s Barajas international airport, bound for the Canary Islands. The Aug. 20, 2008 tragedy killed 154 of 172 souls on board the Boeing MD-80 jetliner.
El Pais cites a 12,000-page …More
Apple working on patches for milestone flaws in iPhones, iPads & iPods
August 5, 2010
Apple has confirmed that it is working on security patches for two milestone security flaws that make it feasible for an attacker to remotely jailbreak your iPhone and install malicious programs, according to this CNET report.
No such attacks are actually taking place yet, says Symantec researcher Kevin Haley, adding that the vulnerability also affects the iPad and the iPod touch.
Jailbreaking iPhones …More
Smartphone Web apps turning malicious
August 2, 2010
Global smartphone shipments topped 54 million in the first three months of this year, a 57% jump from a year ago, according to research firm IDC.
The cyber-underground took notice. Hackers have begun adapting tried-and-true computer infections to work on Internet-enabled smartphones that are all the rage with consumers.
Download the wrong wallpaper app for your Google Android phone and you could get one that will harvest the …More
Microsoft issues emergency patch for “million dollar” Windows LNK flaw
August 2, 2010
Microsoft today rushed out an emergency patch for Windows Vista and Windows 7 PCs just eight days before its next Patch Tuesday.
The software giant issues security patches on the second Tuesday of each month, and only rarely issues so-called out-of-band patches. The company has never issued an emergency patch this close to Patch Tuesday, says Jason Miller, data and security team leader at patch management firm, Shavlik …More
Banks and law enforcement discuss cyberrobbers’ attack methods
July 30, 2010
Banks are getting a bit more transparent about the scale and scope at which online banking accounts for consumers and small businesses are being deluged by cyberroberies.
My page 1A story in today’s print editions of USA TODAY lays out why consumers are facing a risking risk of having their online banking account cleaned out by cyberrobbers. And my 31 December 2009 investigative report recounts the threat …More