Articles about Security

How to force Office 365 to upgrade to Service Pack 1

Service Pack 1 has just started to roll out to Office 2013 users, but Office 365 users have been left out in the cold. You might think that as a subscriber your software is kept constantly updated -- and this is true to a point. But talking to Paul Thurrott, Microsoft reveals that a "handful of updates are totally new in SP1" and these have not all made their way to Office 365 yet. Unless you follow the little trick that Paul has shared, that is.

Unlike many applications Office 365 does not have a built-in means of forcing an update check -- so we have to force a forced update! The steps are very quick and simple to follow, and you can grab yourself a copy of SP1 in next to no time.

Continue reading

UK's Optic Nerve program spied on millions of Yahoo users' video chats -- found porn

It sounds like something from a James Bond film -- or something from a creepy news story about a landlord stalking one of his tenants -- but the headline relates to a real story. We're all only too aware of the activities of the NSA and other governmental agencies monitoring the telephone and internet activities of people around the world, but the latest revelations see things taking a turn for the seriously sinister.

The UK intelligence agency GCHQ, between 2008 and 2010, tapped into the webcam chats of millions of Yahoo users.

Continue reading

Third-party programs add to PC vulnerabilities

On screen lock

We reported earlier this week on how financial organizations are at risk from third parties with compromised security.

It seems that the same thing applies to software. The latest review by IT security specialist Secunia shows that third-party programs are responsible for 76 percent of the vulnerabilities discovered in the 50 most popular programs in 2013.

Continue reading

Chameleon virus spreads between wireless access points like the common cold

The latest breed of virus is airborne. We're not talking about a 24 hour bug that does the rounds at the office, but a computer virus. A team of researchers at the University of Liverpool, UK, demonstrated how a virus known as Chameleon was able to spread undetected over Wi-Fi by exploiting vulnerabilities in access points.

For town and cities where there are large numbers of routers and access points in close proximity, this represents a serious security risk as there is potential for a terrifying number of infections to be made in very little time.

Continue reading

Hey BYOD, Samsung's new Knox is here

BYOD is in full swing, but most businesses are not prepared for it. In order to maintain a high level of security, companies that embrace the movement, or want to, have to change, or adapt, their existing policies to accommodate the wave of devices their employees are bringing in, which is not what 55 percent of them are doing, according to a study issued last week.

Samsung is among the few mobile devices manufacturers to take an active role in ensuring its products are BYOD-ready and enabled straight off the bat. Its response to the movement is Knox, a solution the company released one year ago, to augment the Samsung for Enterprise program. And, now, the successor arrives to beef up Knox even further.

Continue reading

Kaspersky launches a 'safe' Windows Phone browser

Due to its low market share, Windows Phone is not a popular target for malware writers, which gives users a sense of security. Whether that is genuine or false it remains to be seen, but, for the time being, the platform can be considered devoid of any malware.

Like iOS, Windows Phone limits what users, and apps, can do to increase security, which is also one of the reasons why malware is not running rampant. This is achieved through a number of dedicated features, like sandboxing. However, the operating system cannot keep users from visiting the darker corners of the InterWebs, or keep them safe from potential risks while doing so. Russian security company Kaspersky has decided to take matters into its own hands, and help those who navigate to suspicious or unsafe websites, by launching Safe Browser.

Continue reading

iOS 7 has dangerous keylogging vulnerability

When it rains, it pours. Sadly for Apple, it seems the company just cannot catch a break. Most recently, a nasty SSL bug was discovered in both iOS and OSX, which potentially enabled man-in-the-middle attacks and lessened security. While iOS was patched pretty quickly, OS X ws not patched until earlier today.

While that alone is enough to damage a company's reputation on security, yet another Apple vulnerability has surfaced today. Security firm FireEye has discovered a keylogging-like bug in iOS 7, which could allow evil-doers to track all touchscreen and button presses.

Continue reading

Apple finally patches massive OS X security bug with Mavericks 10.9.2

While I am a Linux guy at heart, I love OS X. After all, both Apple's operating system and Linux distributions are Unix-like. While Microsoft's Windows is relatively safe nowadays, I still feel safest on OS X or Fedora. Well, at least I did feel safe. While Linux remains rock solid, OS X and iOS have been dealt a huge blow from a trust perspective.

You see, on both of Apple's operating systems, there was a massive bug discovered, which rendered SSL to be virtually worthless. The bug was an honest mistake, any programmer could have made it. However, in a company the size of Apple, with all of its billions of dollars, it should have been caught. The entire fiasco puts a spotlight on Apple's checks and balances. Even if this is a one-off oversight, perception by consumers is everything. While the fruit-logo company was (arguably) quick to patch iOS, Mac users were left in the cold. Today, Apple finally throws its users a blanket, and releases an update to patch the nasty bug.

Continue reading

viaProtect app delivers smarter mobile security

The increasing trend towards using mobile devices has opened up users to a whole range of new threats. On mobiles insecure apps present a greater risk than traditional malware and viruses.

Announced at the RSA Conference, viaProtect allows consumers to take control of and protect the personal data on their devices.

Continue reading

Bitcoin exchange Mt. Gox is offline 'in light of recent news reports'

One of the largest Bitcoin exchanges that exists, Mt. Gox, is currently offline. It is not entirely clear what the full story behind the disappearance of the site is, as the situation is still evolving. There have been rumors of Bitcoin theft, but nothing has yet been verified. Mt. Gox vanished off the face of the internet, and initially visitors saw nothing more than a blank page but a statement has since been added to the site.

Pay a visit to the Mt. Gox website now and you'll be greeted by a message explaining that the site is currently not operational:

Continue reading

Financial organizations at risk via compromised third parties

safe

Cyber threat intelligence specialist Lookingglass Cyber Solutions has released the results of a study on global financial institutions and the risks introduced by their partners and providers.

It makes for quite scary reading, with analysis revealing that 100 percent of the third-party networks sampled showed signs of either compromise or increased risk.

Continue reading

Cyber criminals Pony up to steal BitCoins

Piggy bank theft

The Pony botnet malware has been around for a while but continues to cause problems and is moving into new areas.

Researchers from Trustwave have revealed on the company's blog that Pony malware has stolen the login credentials and digital wallets of thousands of people over a four month period.

Continue reading

HP donates $250,000 to women studying IT Security

Any job a man can do, so can a woman. Sure, there are physical differences between the sexes, but that does not have to impede success. One industry that has primarily been a men's club is IT. Historically, being a computer nerd has been a guy thing. However, over the years, women have been embracing video games, computers and comic book conventions. An explanation of why could be due to an increased acceptance of nerd and geek activity in the media. TV shows like Big Bang Theory make it cool to be what was once deemed uncool.

Unfortunately, there is currently a shortage in the IT security sector. This is particularly troubling as there have been many breaches lately, most notably Target. With a need to fill vacant positions, HP wisely looks to women -- a group that is underrepresented in the field. The company announces that it is donating a quarter of a million dollars to a scholarship for women studying IT Security.

Continue reading

Emulex adds Sourcefire connector for improved network forensics

Security breach lock

One of the key tasks in investigating network security breaches is being able to capture packets to allow a thorough understanding and quick resolution of the problem.

Network management specialist Emulex Corporation has used the RSA Conference to announce its Endace Fusion Connector for Sourcefire Defense Center, which allows 100 percent packet capture at speeds of up to 100Gb Ethernet.

Continue reading

The most popular stories on BetaNews this past week February 16 -- February 22

Another week, another spate of security related news. In the latest of a recent run of high-profile hacks, Kickstarter announced that it had been hacked, and it was discovered that ASUS routers could be sharing files with more people than users intended. Google is looking to bolster online security with its latest acquisition -- audio-based authentication outfit SlickLogin, while Microsoft's latest partnership with DocuSign looks set to make digital signatures in Office simpler and more secure. If you were under the impression that app security was generally increasing, think again; a new study shows that an almost unbelievable 96 percent of applications have security issues.

Brian got his hands on the Lenovo Miix 2 and was reasonably impressed by what he saw. He also unboxed the much touted Nokia Lumia Icon and found it to be not dissimilar to the 928 -- no bad thing. Anyone looking for an entry-level 4G smartphone now has the Android-based Samsung Galaxy Core LTE to look forward to, complete with "Jelly Bean Plus".

Continue reading

© 1998-2026 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.