Access Control

Access Control news, trend analysis and opinion

PoS malware also targeting ticket vending machines and electronic kiosks

Researchers found a new malware program that can steal information from a large number of point-of-sale systems

Bitdefender security appliance for home networks seeks to replace end-point antivirus

Bitdefender BOX can replace or run alongside a home router to scan all network traffic for security threats


Citadel malware now targets password management applications

A new Citadel configuration steals the master keys for two password managers and a secure authentication program

Activists release Detekt tool that finds surveillance malware

The tool is a joint project of multiple privacy groups who investigated malware used to target journalists and human rights activists

USB Armory is the Swiss army knife of security devices

A USB-stick computer built around a processor with strong security capabilities

New ransomware CoinVault allows users to decrypt one file for free

Cybercriminals use freebie tactic in attempt to increase ransomware success rate

Microsoft: Competing AV vendors need to remember who the bad guys are

Some vendors, particularly in China, are playing hardball to get their antivirus products installed

Adobe fixes eighteen vulnerabilities in Flash Player

Fifteen of them are critical and can result in remote code execution

headingpic

RADIUS versus TACACS+

An explanation and comparison of RADIUS and TACACS+ for Authentication, Authorization and Accounting (AAA).

Cyberespionage group launches sophisticated phishing attacks against Outlook Web App users

The group targeted military agencies, embassies, defense contractors and media organizations, researchers from Trend Micro said

Facebook and Yahoo prevent use of recycled email addresses to hijack accounts

A new mechanism helps email servers determine if a message was intended for a recycled account's previous owner

Abandoned subdomains pose security risk for businesses

Attackers could hijack subdomains pointed by companies at external services they no longer use, researchers say

One week after patch, Flash vulnerability already exploited in large-scale attacks

The Fiesta exploit kit bundles an exploit for the CVE-2014-0569 vulnerability in Flash Player, researchers found

Dropbox dismisses claims of hack affecting 7 million accounts

The credentials leaked by an alleged hacker online were likely stolen from other services, the company said

What you should consider when choosing a password manager

Password managers offer many convenient options, but some come at the expense of security

Yahoo says attackers looking for Shellshock found a different bug

The bug has now been fixed and user data was not at risk, the company said

Tools for creating malicious USB thumb drives released by security researchers

The tools can be used to modify the firmware on USB flash drives in order to infect computers with malware

OpenVPN servers can be vulnerable to Shellshock Bash vulnerability

Some OpenVPN configuration options open remote attack vectors for Bash vulnerabilities, VPN provider warns

The FBI’s big, bad identification system

The FBI’s formidable Next Generation Identification is up and running

security

8 cutting-edge technologies aimed at eliminating passwords

From electronic pills to digital tattoos, these eight innovations aim to secure systems and identities without us having to remember a password ever again

Load More