The Wire: Google Security Edition

Google has reportedly stopped censoring Chinese search results for its Google.cn property, in response to what it said earlier this week were targeted attacks against its corporate infrastructure aimed at Chinese dissident groups. But a security research firm claims the attack that hit Google was part of a larger, unusually sophisticated assault aimed at stealing … Читать далее

Money Mules Helped to Rob W. Va. Bank

I have written a great deal about how organized cyber gangs in Eastern Europe drained tens of millions of dollars from the bank accounts of small- to mid-sized businesses last year. But new evidence indicates one of the gangs chiefly responsible for these attacks managed to hack directly into a U.S. bank last year and … Читать далее

Story-Driven Résumé: My Best Work 2005-2009

I began writing for The Washington Post in 1996, and started covering computer and Internet security in 1999. Below are links to what I believe is some of my best work over the past four years or so. Virtually all of the stories and blog posts listed here were either Washington Post/Security Fix exclusives, or … Читать далее

Microsoft, Adobe Issue Security Updates

Microsoft and Adobe Systems each issued security updates on Tuesday. Redmond released a single patch to plug a flaw that’s not terribly scary, unless you happen to be running  Windows 2000. Adobe’s patch bundle, however, covers at least eight critical security flaws, including one that hackers have been exploiting in targeted attacks of late. The … Читать далее

Google Hacked, Says it Will Stop Censoring Chinese Search Results

In a huge disclosure today, Google said a sophisticated and targeted cyber attack against its corporate infrastructure late last year was aimed at accessing the Gmail accounts of Chinese human rights activists. As a result of the incident, the company says it will no longer censor search results on behalf of the Chinese government, and … Читать далее

The Wire

A periodic pointer to some of the more interesting and newsworthy security news stories. In no particular order: Proof-of-concept for Mac OS X systems Released Possible Malicious Apps for Google’s Android Phone Online Gaming Exec. Sentenced to 33 Months ‘Massive Cybercrime Conspiracy’ Read after the jump for summaries and links to more information. –Dan Goodin … Читать далее

Firm to Release Database & Web Server 0days

January promises to be a busy month for Web server and database administrators alike: A security research firm in Russia says it plans to release information about a slew of previously undocumented vulnerabilities in several widely-used commercial software products. Evgeny Legerov, founder of Moscow based Intevydis, said he intends to publish the information between Jan … Читать далее

FBI Investigating Theft of $500,000 from NY School District

The FBI is investigating the theft of nearly a half million dollars from tiny Duanesburg Central School District in upstate New York, after cyber thieves tried to loot roughly $3.8 million from district online bank accounts last month. On Friday, Dec. 18, thieves tried to electronically transfer $1.86 million from the district’s account at NBT … Читать далее

Security Tweaks for Adobe Reader

Adobe is planning to ship an update a week from today that fixes a critical vulnerability in its free and widely used PDF Reader program. Unfortunately, according to experts, criminal hackers are starting to step up attempts to exploit the flaw and install malicious software via poisoned PDFs. The SANS Internet Storm Center warns that … Читать далее

Clever Gmail Spam Technique

The message staring out at me from my Gmail inbox said I’d received an update on my previous conversation with a sender named “vaishali”. The “(3)” next to the sender’s name suggested that I had responded to this person before, although I didn’t recognize the name. I clicked anyhow. Alas, the message was spam for … Читать далее