Credit and debit card transaction processing company Heartland Payment System warned that it had found evidence of a network breach that had compromised consumers’ credit-card numbers. Heartland Payment System Credit and debit card transaction processing company serving more than 250,000 customers worldwide. A week back auditors hired by the company found malicious…
Microsoft Inc. has released fixes for Windows. Totally three bugs has been fixed. Among them two are ‘critical’ and one is ‘moderate’. Microsoft last week released patches for three vulnerabilities in the Server Message Block (SMB) file-sharing protocol in Windows. Schultze said the critical bugs are very serious that can exploit them…
Software makers, security vendors, and government agencies joined together to prepare list of softwares mistakes that can lead to vulnerabilities. The brainchild of Alan Paller, director of research at the SANS Institute, and Steve Christey and Bob Martin, both of the MITRE Corp., the Top 25 Most Dangerous Programming Errors includes issues that are…
How secure your website?, asks Netcraft network-monitoring firm. According to the reports from Netcraft, one out of seven SSL (Secure Socket Layer) Digital Certificates are weak. According to the survey by Netcraft, the vast certificates in the internet issued by RapidSSL – now owned by VeriSign are prone to security…
Google developer website is used for distributing malware, says McAfee Inc, the leader in intrusion prevention and security risk management. RSA – An security Divison of EMC reported an phishing email that re-directs to Fake CNN site which spreads trojans. Now McAfee has reported a similar issue with code.google.com website. Code.Google.com…
An new phishing email is circulated in the internet, which looks like from CNN website. But it is not so. Its a phishing email that links to a fake CNN website offerring an video content of Israel-Hamas conflict, but instead hosts a trojan that can steal sensitive informations from the user…
An international group of security researchers and academic cryptographers said MD5 hashing is no more secure & advised browsers, certificate authorities to drop support for digital signatures based on MD5 hashing. They said, after they claimed to have produced fake digital certificate but a valid one from MD5. The researchers…
A group of researchers from Berkeley, have claimed that they have been successful in hacking the SSL scheme used by Verisign for securing Web sites. The researchers claim that they used flaw in hashing algorithm to create fake digital certificates for Web sites. Interestingly the hacking was done using a…