Security threats : Tech news from CNET News.com

HP ships USB sticks with malware

April 9, 2008 10:55 AM PDT

Hewlett-Packard has released a batch of USB keys for numerous Proliant server models which contain malware that could allow an attacker to take over an infected system.
(From ZDNet Australia)

U.S. reveals plans to hit back at cyberthreats

April 4, 2008 9:18 AM PDT

The U.S. Air Force Cyber Command is just as interested in attack as defense, according to a senior general.

Windows-based cash machines 'easily hacked'

March 4, 2008 11:31 AM PST

ATMs that rely on desktop PC technology--and that's a lot of them--are at risk from worms, key loggers, and denial-of-service attacks.

Symantec warns of router compromise

January 24, 2008 9:22 AM PST

Security company says it has seen an attack using a cross-site scripting flaw in 2Wire DNS routers.

CIA: Cyberattack caused multiple-city blackout

January 22, 2008 7:47 AM PST

Security agency breaks its normal silence, warning about successful attacks against critical national infrastructures outside the U.S.

If you thought 'Security '07' was hairy, just wait

January 3, 2008 4:00 AM PST

Jon Oltsik says 2008 will bring a new cluster of headlines about information security and the workplace.

Year in review: Botnet gains, Web 2.0 pains

August 12, 2008 12:44 PM PDT

As the Storm worm raged, tapping countless PCs for nefarious ends, the rush to online applications left many Web sites vulnerable.

Cracking open the cybercrime economy

January 2, 2008 6:13 AM PST

Hacking for fun has evolved into hacking for profit, and created a business model nearly as sophisticated as that of legal software.

The next generation of security threats

December 5, 2007 4:13 AM PST

Forget widespread worms. Nowadays, limited-scale threats like targeted e-mail attacks are causing the most concern.

Inviting the hackers inside

December 4, 2007 4:52 PM PST

Aiming to be more open, Microsoft reaches out to the security research community it once kept at a distance.

At software giant, pain gives rise to progress

December 14, 2007 2:27 PM PST

Redmond's security practices have been transformed since threats like Slammer and Blaster first wormed their way onto the scene.

Study: 'Huge jump' in Microsoft flaws since last year

November 29, 2007 1:41 PM PST

The number of security holes found in Microsoft software between 2006 and 2007 has risen threefold, says vulnerability-scanning company Qualys.

Insecurity in the digital world

November 28, 2007 1:08 PM PST

Internet attorney Eric J. Sinrod examines what's become the soft underbelly of our increasingly electronic era.

Targeted e-mail attacks spoof DOJ, business group

November 20, 2007 12:35 PM PST

Security expert says latest attacks part of an escalating problem. Availability of toolkits, rise of social networks are making it easier for phishers.
Images: Customized e-mail attacks

Infamous Russian malware gang vanishes

November 14, 2007 7:36 AM PST

Trend Micro claims the Russian Business Network suddenly dropped off the Internet, but the group may have resurfaced in Asia.

The new urgency to fix online privacy

December 18, 2007 8:54 AM PST

Unlike Y2K, which was a nonevent, Internet attorney Eric Sinrod explains why the business world is mobilizing behind what it sees as a real threat.

HP launches key-management appliance

October 30, 2007 12:29 PM PDT

Company releases a key-management product aimed at helping companies manage encrypted systems more efficiently.

Why we still invite data breaches

October 29, 2007 5:33 AM PDT

Sentrigo's Dan Sarel writes that enterprise security has been slow to realize the evolving nature of for-profit cyber hack attacks.

Virtual rootkits not a problem, say researchers

October 2, 2007 10:02 AM PDT

Hypervisor technology cannot be used to hide rootkits from detection, according to a study by Carnegie Mellon and Stanford researchers.

Gmail cookie vulnerability exposes user's privacy

September 27, 2007 9:52 AM PDT

Program developed by "ethical hacking" group takes advantage of cross-site scripting vulnerability to steal contacts, forward e-mail.