Ryan Naraine

Opera has shipped a high-priority update to its flagship Web browser to correct multiple flaws that put Windows users at risk of malicious hacker attacks. With Opera 9.26 for Windows, the Norwegian company shipped patches for at least three vulnerabilities that can be exploited to launch malware installations or conduct identity theft attacks.The most serious […]

WASHINGTON – A pair of security researchers have developed a way to use $1,000 worth of off-the-shelf hardware to receive and decipher GSM signals, significantly reducing the time it takes to eavesdrop on conversations on the world’s largest mobile phone network.The technology was introduced Feb. 20 at the Black Hat DC Briefings here by David […]

WASHINGTON-A four-month investigation into the inner workings of the phishing scourge that drives identity theft attacks has uncovered an underground ecosystem of compromised Web servers, do-it-yourself phishing kits, brazen credit card thieves and lazy code copycats.At the Black Hat DC Briefings here, security researchers Billy Rios and Nitesh Dhanjani shared the findings of their investigation […]

Microsoft’s Secure Windows Initiative unit has emerged from the shadows, promising a new level of transparency, as well as details of software vulnerabilities and security bulletins.SWI, tasked with maintaining and managing all aspects of Microsoft’s mandatory SDL (Security Development Lifecycle), has launched a new blog that provides customers with technical details on security vulnerabilities, mitigations […]

Hacker Jon Lech Johansen (aka DVD Jon for anti-DRM exploits) has launched a new social media-type startup. The 24-year-old Norwegian, who became famous around the world for his work on DeCS-a utility that cracked the encryption on DVDs-has released a free application called DoubleTwist desktop that promises users the ability to share and sync video, […]

That networked multifunction printer sitting innocently in the corner of your office just might be the most significant entry point for hackers to hijack sensitive data from your business. Even worse, security researchers warn, they are a forgotten risk in every enterprise, featuring hardware that combines several functions in a single unit-fax, copier, printer and […]

Adobe’s security struggles have hit a new gear with three new bulletins warning about “critical” code injection and system takeover vulnerabilities in enterprise-facing products.On the heels of the recent disclosure hiccup surrounding Adobe Reader, the vendor Feb. 12 released patches for two critical issues affecting the Flash Media Server and the Adobe Connect Enterprise Server.A […]

Mozilla is inching closer to delivering the next major refresh of its flagship Firefox browser. Late this evening, the open-source group shipped Firefox 3 Beta 3, an update that features approximately 1,300 individual changes from the previous beta, including fixes for stability, performance, memory usage, platform enhancements and user interface improvements. The latest beta is […]

The 15 Most Influential People in Security Today The 15 Most Influential People in Security Today – 1. Tavis Ormandy, Google Security Team As goes Google, so goes Web 2.0 security. Tavis Ormandy, one of the most visible hackers/researchers on the Google Security Team, faces the unenviable responsibility of making sure all of Google’s products […]

Microsoft has issued 11 security bulletins with patches for 17 documented software flaws. But Windows IT administrators are raising alarm bells because Microsoft hasn’t issued a fix for a critical-and already exploited-Excel vulnerability. Microsoft originally planned to ship a dozen bulletins, but at the eleventh hour one of the “critical” advisories was yanked to address […]