Matthew Hines

A new research paper put together by researchers from Google, IBM and CENL (the Computer Engineering and Networks Laboratory) puts some serious weight behind a concept that has become all too familiar to many of us following the world of IT security on a daily basis — that is, that Web browsers have become the […]

How’s this for instant gratification? Fortinet released its June malware activity report this morning while most people here in the United States were winding down in preparation for the impending Independence Day and indulging in light beer bubble bath fantasies and cheeseburger dreams. (FTR make mine a Sammy Light and steak sandwich, please.) Anyhow, just […]

Researchers at endpoint security specialist Sophos are warning of a new set of attacks targeted at .MOBI Web pages. The SQL threats highlighted in the research are interesting because they represent new innovation in the world of mobile attacks, which have yet to materialize to the extent that experts once predicted they would, but which […]

The Messaging Anti-Abuse Working Group, a special interest group focused on lowering the negative impact of spam and e-mail/IM-borne malware (in particular botnets) on the entire electronic communications ecosystem, has released a new set of best practices to help ISPs and network operators deal with the ubiquitous problems. Better known as MAAWG, the consortium of […]

The smaht folks at StopBadware.org–the anti-malware/adware team backed by Harvard Law School’s Berkman Center for Internet & Society–published some interesting stats earlier this week that highlight the growing use of Chinese Net infrastructure in the proliferation of unwanted software over the Web. The use of Chinese servers and ISPs in the distribution of badware (defined […]

The hits just keep on coming, as two of the world’s most high-profile software makers were forced to distribute security updates for critical vulnerabilities in their most popular products over the last several days. Microsoft issued a patch on June 24 for a “critical” vulnerability discovered in the core XML services code base of many […]

It’s a surprise to very few who follow the malware economy closely, but new metrics have arrived that chart the continued proliferation of the malware epidemic. It was hard not to shake your head when anti-virus vendor Symantec reported this spring that it had recorded 711,912 unique threats during the course of 2007, a 468 […]

The entire foundation of our trust in the Internet has been eroded in recent years by the growing popularity of malware attacks propagated via hacked Web sites, and there’s evidence that the problem only continues to intensify. Several years ago, users were thought to be largely insulated from the problem if they merely policed their […]

Security researchers are reporting a newly discovered vulnerability in Microsoft Word that could potentially allow for remote execution by hackers or malware. Detailed in a security report distributed by training specialist organization The SANS Institute and tagged with a “critical” rating in the published summary, the list handling memory corruption flaw in Word specifically affects […]

Networking giant Cisco has issued a security advisory warning users of two authentication vulnerabilities in version 3 of SNMP, the widely-adopted Internet protocol element used by network management systems to monitor device activity. Patches for the flaws have been made available and the US-CERT also issued a related warning that includes a list of many […]