http://news.softpedia.com Softpedia News - Security Fixes and Improvements Softpedia News en-us 2001 - 2013 Softpedia. All rights reserved. Fri, 24 May 2013 13:15:06 GMT Fri, 24 May 2013 13:15:06 GMT News http://blogs.law.harvard.edu/tech/rss 10 http://news.softpedia.com/base_img/softpedia_logo.gif http://news.softpedia.com http://news.softpedia.com/news/Firefox-23-Aurora-Blocks-Unsecure-Mixed-Content-by-Default-354123.shtml Firefox 23 Aurora isn't out yet, but it should become available any time now. Mozilla is already talking about it and the major new feature, a new Mixed Content Blocker UI.

Firefox already had the ability to block unencrypted content served through encrypted pages.

This is important because the web today is i... (read more)]]> Fri, 17 May 2013 09:01:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Firefox-23-Aurora-Blocks-Unsecure-Mixed-Content-by-Default-354123.shtml Security Fixes and Improvements http://news.softpedia.com/news/Firefox-23-Aurora-Blocks-Unsecure-Mixed-Content-by-Default-354123.shtml#review_zone Softpedia News (Lucian Parfeni) http://news.softpedia.com/news/iTunes-11-0-3-Patches-Dozens-of-Vulnerabilities-on-Mac-Windows-354102.shtml iTunes 11.0.3 is the latest version of Apple’s media player & digital distribution storefront for Macs and Windows computers. In addition to a few UI tweaks and several added features, the update comes with under-the-hood fixes that strengthen its security.

Apple confirms in a security advisory on its Support site... (read more)]]> Fri, 17 May 2013 08:19:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/iTunes-11-0-3-Patches-Dozens-of-Vulnerabilities-on-Mac-Windows-354102.shtml Security Fixes and Improvements http://news.softpedia.com/news/iTunes-11-0-3-Patches-Dozens-of-Vulnerabilities-on-Mac-Windows-354102.shtml#review_zone Softpedia News (Filip Truta) http://news.softpedia.com/news/Queen-s-Speech-Government-to-Propose-Ways-of-Investigating-Crimes-in-Cyberspace-Video-351837.shtml On Wednesday, Queen Elizabeth II delivered her annual speech to reveal the UK government’s agenda for the upcoming period. One of the topics highlighted by Her Majesty is related to combating crimes that involve cyberspace.

“In relation to the problem of matching internet protocol addr... (read more)]]> Thu, 9 May 2013 06:49:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Queen-s-Speech-Government-to-Propose-Ways-of-Investigating-Crimes-in-Cyberspace-Video-351837.shtml Security Fixes and Improvements http://news.softpedia.com/news/Queen-s-Speech-Government-to-Propose-Ways-of-Investigating-Crimes-in-Cyberspace-Video-351837.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/US-Senators-Introduce-the-Deter-Cyber-Theft-Act-351508.shtml On Tuesday, United States Senators Carl Levin, D-Mich.; John McCain, R-Ariz.; Jay Rockefeller, D-W.Va.; and Tom Coburn, R-Okla introduced a new bill aimed at combating the theft of intellectual property from US organizations.

The legislation, called the Deter Cyber Theft Act, would require the Director of National Intelligence to comp... (read more)]]> Wed, 8 May 2013 07:43:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/US-Senators-Introduce-the-Deter-Cyber-Theft-Act-351508.shtml Security Fixes and Improvements http://news.softpedia.com/news/US-Senators-Introduce-the-Deter-Cyber-Theft-Act-351508.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/Unpatched-Building-Management-System-Exposes-Google-s-Wharf-7-HQ-to-Hackers-351043.shtml Cylance security researchers Terry McCorkle and Billy Rios, who specialize in identifying vulnerabilities in industrial control systems (ICS), have discovered that the building management system from Google Australia’s Wharf 7 headquarters could have been compromised by hackers.

The building control s... (read more)]]> Mon, 6 May 2013 14:45:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Unpatched-Building-Management-System-Exposes-Google-s-Wharf-7-HQ-to-Hackers-351043.shtml Security Fixes and Improvements http://news.softpedia.com/news/Unpatched-Building-Management-System-Exposes-Google-s-Wharf-7-HQ-to-Hackers-351043.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/Experts-Identify-9-Full-Sandbox-Bypass-Issues-Affecting-IBM-Java-351038.shtml Researchers from Security Explorations have identified a total of nine ways to completely bypass the IBM Java sandbox. Of these nine exploits, five are new ones and four are old issues that haven’t been properly addressed.

According to Adam Gowdiak, the founder and CEO of the Polish security firm, the five new f... (read more)]]> Mon, 6 May 2013 12:54:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Experts-Identify-9-Full-Sandbox-Bypass-Issues-Affecting-IBM-Java-351038.shtml Security Fixes and Improvements http://news.softpedia.com/news/Experts-Identify-9-Full-Sandbox-Bypass-Issues-Affecting-IBM-Java-351038.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/OAuth-Vulnerabilities-Allowed-Hackers-to-Access-Private-Photos-on-Instagram-Video-350730.shtml Experts have often demonstrated that OAuth vulnerabilities can be exploited to cause some serious damage. The latest example comes from Nir Goldshlager, security researcher and founder of Break Security.

The expert has identified two methods in which Instagram accounts can be hijacked by leveraging OA... (read more)]]> Fri, 3 May 2013 08:15:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/OAuth-Vulnerabilities-Allowed-Hackers-to-Access-Private-Photos-on-Instagram-Video-350730.shtml Security Fixes and Improvements http://news.softpedia.com/news/OAuth-Vulnerabilities-Allowed-Hackers-to-Access-Private-Photos-on-Instagram-Video-350730.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/Trustwave-s-New-Mobile-Security-Practice-Helps-Firms-Implement-BYOD-Programs-350454.shtml Security firm Trustwave has announced the availability of a new mobile security practice that’s designed to help organizations that want to implement bring-your-own-device (BYOD) programs. The new solution enables companies to embrace mobility while making sure that all the associated risks are addressed.
<... (read more)]]> Thu, 2 May 2013 11:30:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Trustwave-s-New-Mobile-Security-Practice-Helps-Firms-Implement-BYOD-Programs-350454.shtml Security Fixes and Improvements http://news.softpedia.com/news/Trustwave-s-New-Mobile-Security-Practice-Helps-Firms-Implement-BYOD-Programs-350454.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/Australian-Government-Releases-Confidential-Draft-of-Data-Breach-Notification-Law-350287.shtml The Australian government’s plans to introduce a law that would force organizations to disclose data breaches have been known for quite some time. Now, the Federal Attorney-General's Department has started circulating a draft of the bill.

Classified as “confidential,” the draft has b... (read more)]]> Thu, 2 May 2013 06:54:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Australian-Government-Releases-Confidential-Draft-of-Data-Breach-Notification-Law-350287.shtml Security Fixes and Improvements http://news.softpedia.com/news/Australian-Government-Releases-Confidential-Draft-of-Data-Breach-Notification-Law-350287.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/Authentication-Bypass-Flaw-in-PayPal-s-BillSafe-Allowed-Hackers-to-Hijack-User-Accounts-349884.shtml At the beginning of 2013, security researchers from Vulnerability Lab identified a critical authentication bypass flaw in BillSafe, the German provider of payment upon invoice owned by eBay. The vulnerability was reported to PayPal, which addressed it earlier this month.

The vulnerability could h... (read more)]]> Wed, 1 May 2013 06:36:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Authentication-Bypass-Flaw-in-PayPal-s-BillSafe-Allowed-Hackers-to-Hijack-User-Accounts-349884.shtml Security Fixes and Improvements http://news.softpedia.com/news/Authentication-Bypass-Flaw-in-PayPal-s-BillSafe-Allowed-Hackers-to-Hijack-User-Accounts-349884.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/Expert-Says-Skype-Accounts-Can-Be-Easily-Hacked-via-Skype-Support-349286.shtml A security researcher that uses the online moniker TibitXimer claims that Skype accounts can be easily hacked by social engineering the company’s support team. He came to this conclusion after his own account had been hijacked six times in a single day.

TibitXimer says that accounts can be taken over by anyone... (read more)]]> Mon, 29 Apr 2013 11:27:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Expert-Says-Skype-Accounts-Can-Be-Easily-Hacked-via-Skype-Support-349286.shtml Security Fixes and Improvements http://news.softpedia.com/news/Expert-Says-Skype-Accounts-Can-Be-Easily-Hacked-via-Skype-Support-349286.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/Experts-Identify-PDF-Usage-Tracking-Issue-in-Adobe-Reader-349231.shtml Researchers from security firm McAfee have identified an interesting issue that affects all versions of Adobe Reader. While the flaw can’t be leveraged to execute code, it can be successfully utilized to track when and where specially-crafted PDF documents are opened.

“When a specific PDF JavaScript API is called... (read more)]]> Mon, 29 Apr 2013 09:20:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Experts-Identify-PDF-Usage-Tracking-Issue-in-Adobe-Reader-349231.shtml Security Fixes and Improvements http://news.softpedia.com/news/Experts-Identify-PDF-Usage-Tracking-Issue-in-Adobe-Reader-349231.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/Risks-Associated-with-Migrating-to-the-Cloud-Can-Be-Easily-Managed-Experts-Say-348704.shtml The Information Security Forum (ISF) has released a new study, Data Privacy in the Cloud, which focuses on teaching organizations that want to migrate to the cloud how to handle the risks associated with such decisions, especially now that data stored in the cloud has to comply with privacy regulations.

... (read more)]]> Fri, 26 Apr 2013 18:01:02 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Risks-Associated-with-Migrating-to-the-Cloud-Can-Be-Easily-Managed-Experts-Say-348704.shtml Security Fixes and Improvements http://news.softpedia.com/news/Risks-Associated-with-Migrating-to-the-Cloud-Can-Be-Easily-Managed-Experts-Say-348704.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/Ferrari-Asks-Kaspersky-to-Secure-PCs-Production-Line-Computers-347815.shtml When you develop the technology that drives some of the fastest cars in the world, you want to make sure that no one can gain access to what’s stored on your computers. With the number of cyberattacks on the rise, Ferrari wants to make sure hackers are kept at bay.

Which is why the company has put world-renowned s... (read more)]]> Tue, 23 Apr 2013 14:31:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Ferrari-Asks-Kaspersky-to-Secure-PCs-Production-Line-Computers-347815.shtml Security Fixes and Improvements http://news.softpedia.com/news/Ferrari-Asks-Kaspersky-to-Secure-PCs-Production-Line-Computers-347815.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/Viber-Flaw-Allows-Hackers-to-Bypass-Android-Smartphone-Lock-Screens-Video-347763.shtml Experts from security firm Bkav have identified a vulnerability in Viber – the popular application that allows users to make calls, send text messages and photos for free. The security hole could be exploited to bypass the lock screen on Android smartphones and gain full access to the device.

According ... (read more)]]> Tue, 23 Apr 2013 13:26:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Viber-Flaw-Allows-Hackers-to-Bypass-Android-Smartphone-Lock-Screens-Video-347763.shtml Security Fixes and Improvements http://news.softpedia.com/news/Viber-Flaw-Allows-Hackers-to-Bypass-Android-Smartphone-Lock-Screens-Video-347763.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/Researchers-Identify-Redirection-API-Vulnerability-in-Java-7-Update-21-347204.shtml Less than a week has passed since Oracle released its April 2013 Critical Patch Update for Java and researchers have already identified a vulnerability affecting the latest version of the software.

Polish firm Security Explorations has discovered a Reflection API issue – dubbed “Issue 61” &ndas... (read more)]]> Mon, 22 Apr 2013 07:45:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Researchers-Identify-Redirection-API-Vulnerability-in-Java-7-Update-21-347204.shtml Security Fixes and Improvements http://news.softpedia.com/news/Researchers-Identify-Redirection-API-Vulnerability-in-Java-7-Update-21-347204.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/87-of-Corporate-Computers-Lack-Critical-Software-Updates-F-Secure-Warns-346608.shtml Security solutions provider F-Secure warns that 87% of the corporate computers they’ve gathered data from lack critical software updates. This represents a serious threat to business security, especially now, when large organizations are often targeted by cyberattacks.

“From the numbers, it appears ... (read more)]]> Thu, 18 Apr 2013 22:11:01 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/87-of-Corporate-Computers-Lack-Critical-Software-Updates-F-Secure-Warns-346608.shtml Security Fixes and Improvements http://news.softpedia.com/news/87-of-Corporate-Computers-Lack-Critical-Software-Updates-F-Secure-Warns-346608.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/Critical-Vulnerabilities-Found-in-13-SOHO-Routers-Many-Can-Be-Exploited-Remotely-346536.shtml Security researchers from Independent Security Evaluators (ISE) have analyzed 13 small office / home office (SOHO) routers and wireless access points to see just how vulnerable they are to cyberattacks.

They’ve found that all of the 13 devices can be compromised by a local attacker. Even more wor... (read more)]]> Thu, 18 Apr 2013 13:18:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Critical-Vulnerabilities-Found-in-13-SOHO-Routers-Many-Can-Be-Exploited-Remotely-346536.shtml Security Fixes and Improvements http://news.softpedia.com/news/Critical-Vulnerabilities-Found-in-13-SOHO-Routers-Many-Can-Be-Exploited-Remotely-346536.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/Reported-and-Fixed-Stored-XSS-Flaws-in-Facebook-s-Chat-Check-In-and-Messenger-346351.shtml Security researcher Nir Goldshlager, the CEO and founder of penetration testing company Break Security, has identified several persistent cross-site scripting (XSS) vulnerabilities in Facebook. The vulnerabilities have been confirmed and fixed by the social media company.

The security issues plagued servi... (read more)]]> Thu, 18 Apr 2013 07:49:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Reported-and-Fixed-Stored-XSS-Flaws-in-Facebook-s-Chat-Check-In-and-Messenger-346351.shtml Security Fixes and Improvements http://news.softpedia.com/news/Reported-and-Fixed-Stored-XSS-Flaws-in-Facebook-s-Chat-Check-In-and-Messenger-346351.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/Buggy-Malwarebytes-Definitions-Update-Disables-Thousands-of-Devices-Worldwide-346313.shtml Thousands of computers running Malwarebytes were rendered inoperable on Monday after the company released a faulty definitions update. The update in question was pulled within 8 minutes after being released, but 8 minutes was more than enough to cause some damage.

“I want to offer my sincere apology... (read more)]]> Thu, 18 Apr 2013 06:38:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Buggy-Malwarebytes-Definitions-Update-Disables-Thousands-of-Devices-Worldwide-346313.shtml Security Fixes and Improvements http://news.softpedia.com/news/Buggy-Malwarebytes-Definitions-Update-Disables-Thousands-of-Devices-Worldwide-346313.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/Expert-Reports-Several-Web-Vulnerabilities-to-Oracle-Some-Patched-with-April-CPU-346215.shtml Independent security researcher Abdelmorite Eljoaydi, aka Jigsaw, has reported several web vulnerabilities to Oracle over the past weeks. The company has addressed some of them with the recently released April 2013 Critical Patch Update, but some of them still remain unfixed.

The expert has told Softpe... (read more)]]> Wed, 17 Apr 2013 14:11:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Expert-Reports-Several-Web-Vulnerabilities-to-Oracle-Some-Patched-with-April-CPU-346215.shtml Security Fixes and Improvements http://news.softpedia.com/news/Expert-Reports-Several-Web-Vulnerabilities-to-Oracle-Some-Patched-with-April-CPU-346215.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/European-Parliament-Grants-ENISA-New-7-Year-Mandate-346195.shtml On Tuesday, the European Parliament voted to extend the mandate of the European Network and Information Security Agency (ENISA) by 7 years.

626 members of the European Parliament voted in favor and 45 against the new regulation.

“Today's vote offers a new start for a new ENISA: with expanded tasks, a more agile... (read more)]]> Wed, 17 Apr 2013 13:46:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/European-Parliament-Grants-ENISA-New-7-Year-Mandate-346195.shtml Security Fixes and Improvements http://news.softpedia.com/news/European-Parliament-Grants-ENISA-New-7-Year-Mandate-346195.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/ACLU-Accuses-US-Carriers-of-Not-Releasing-Enough-Security-Updates-for-Android-Devices-346085.shtml The American Civil Liberties Union (ACLU) has filed a request for investigation with the Federal Trade Commission (FTC), asking the organization to look into the practices of some major US wireless carriers.

ACLU accuses companies such as AT&T, Sprint, T-Mobile and Verizon of not releasing enough... (read more)]]> Wed, 17 Apr 2013 09:51:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/ACLU-Accuses-US-Carriers-of-Not-Releasing-Enough-Security-Updates-for-Android-Devices-346085.shtml Security Fixes and Improvements http://news.softpedia.com/news/ACLU-Accuses-US-Carriers-of-Not-Releasing-Enough-Security-Updates-for-Android-Devices-346085.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/Oracle-Fixes-128-Vulnerabilities-With-April-2013-CPU-345992.shtml A total of 128 vulnerabilities have been addressed by Oracle with the release of the company’s April 2013 Critical Patch Update (CPU).

The list of affected products includes Oracle Database, Fusion Middleware, E-Business Suite, Supply Chain, PeopleSoft, Siebel, Health Sciences, Retail, Oracle FLEXCUBE, Primavera, Oracle an... (read more)]]> Wed, 17 Apr 2013 07:32:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Oracle-Fixes-128-Vulnerabilities-With-April-2013-CPU-345992.shtml Security Fixes and Improvements http://news.softpedia.com/news/Oracle-Fixes-128-Vulnerabilities-With-April-2013-CPU-345992.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/INTERPOL-Calls-for-Cyber-Security-Cooperation-Between-Law-Enforcement-and-Private-Sector-345349.shtml Speaking at the 3rd International Engagement on Cyber Security Conference at Georgetown University last week, INTERPOL Secretary General Ronald K. Noble highlighted the fact that private Internet security companies and law enforcement agencies must work together to combat cybercrime and enhance cyber securi... (read more)]]> Mon, 15 Apr 2013 09:23:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/INTERPOL-Calls-for-Cyber-Security-Cooperation-Between-Law-Enforcement-and-Private-Sector-345349.shtml Security Fixes and Improvements http://news.softpedia.com/news/INTERPOL-Calls-for-Cyber-Security-Cooperation-Between-Law-Enforcement-and-Private-Sector-345349.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/Incapsula-Protects-HITB-Website-During-Amsterdam-2013-Conference-344299.shtml We’re in Amsterdam for the 2013 edition of the Hack in the Box (HITB) conference. A lot of great speakers will present their findings on some highly interesting topics so it’s likely that the HITB website will get a lot of visitors these days.

That’s why the organizers of the event have contracted I... (read more)]]> Wed, 10 Apr 2013 07:53:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Incapsula-Protects-HITB-Website-During-Amsterdam-2013-Conference-344299.shtml Security Fixes and Improvements http://news.softpedia.com/news/Incapsula-Protects-HITB-Website-During-Amsterdam-2013-Conference-344299.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/Exxon-Mobil-Improves-Cyber-Security-by-Focusing-on-Employee-Habits-343257.shtml Back in February, we learned that a number of oil rigs and platforms had been targeted by cyberattacks which, in some cases, even managed to knock systems offline. Oil and gas companies have begun to realize that computer security is not something that should be taken lightly and some of them have already started doing something... (read more)]]> Fri, 5 Apr 2013 10:59:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/Exxon-Mobil-Improves-Cyber-Security-by-Focusing-on-Employee-Habits-343257.shtml Security Fixes and Improvements http://news.softpedia.com/news/Exxon-Mobil-Improves-Cyber-Security-by-Focusing-on-Employee-Habits-343257.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/MIT-to-Improve-Cyber-Security-to-Protect-Itself-Against-DDOS-Attacks-342933.shtml After the recent distributed denial-of-service (DDOS) attacks, hacks, and the gunman hoax, the Massachusetts Institute of Technology (MIT) is determined to improve campus security, including the organization’s cyber security.

In a security memo published a couple of days ago, MIT reveals that it will impleme... (read more)]]> Thu, 4 Apr 2013 11:59:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/MIT-to-Improve-Cyber-Security-to-Protect-Itself-Against-DDOS-Attacks-342933.shtml Security Fixes and Improvements http://news.softpedia.com/news/MIT-to-Improve-Cyber-Security-to-Protect-Itself-Against-DDOS-Attacks-342933.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/LinkedIn-Fixes-XSS-and-CSRF-Flaws-in-Investors-Page-and-Add-Connections-Feature-340868.shtml Security researchers from Internet Security Auditors, a firm based in Spain, have identified several web vulnerabilities in LinkedIn. Since LinkedIn has patched the issues, the experts have decided to make their findings public.

The first vulnerability, a Cross-site request forgery (CSRF), was identifie... (read more)]]> Wed, 27 Mar 2013 21:41:01 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/LinkedIn-Fixes-XSS-and-CSRF-Flaws-in-Investors-Page-and-Add-Connections-Feature-340868.shtml Security Fixes and Improvements http://news.softpedia.com/news/LinkedIn-Fixes-XSS-and-CSRF-Flaws-in-Investors-Page-and-Add-Connections-Feature-340868.shtml#review_zone Softpedia News (Eduard Kovacs) http://news.softpedia.com/news/UK-s-GCHQ-Stores-Passwords-Without-Encrypting-Them-340510.shtml The recent data breaches have shown that there are still a large number of organizations that fail to properly encrypt user passwords before storing them in a database.

However, when we learn that a major government agency is storing passwords in plain text, we can’t help but think that our efforts to keep our personal infor... (read more)]]> Tue, 26 Mar 2013 14:03:00 GMT Softpedia News - Security Fixes and Improvements http://news.softpedia.com/news/UK-s-GCHQ-Stores-Passwords-Without-Encrypting-Them-340510.shtml Security Fixes and Improvements http://news.softpedia.com/news/UK-s-GCHQ-Stores-Passwords-Without-Encrypting-Them-340510.shtml#review_zone Softpedia News (Eduard Kovacs)