ZDNet Vulnerability Resources

Syndicate content Latest Topic for ZDNet in Security
Latest Topic for ZDNet in Security
Updated: 8 hours 52 sec ago

Hands on with Caine Linux: Pentesting and UEFI compatible

Fri, 11/21/2014 - 08:05
Here's my take on Computer Aided INvestigative Environment - a Linux-based, UEFI-compatible LIVE USB/DVD digital forensic system.

Zero Day Weekly: WhatsApp, Blackphone, Citadel hits password managers

Fri, 11/21/2014 - 07:26
A collection of notable security news items for the week ending November 21, 2014. Covers enterprise, controversies, reports and more.

How to use an authenticator app to improve your online security

Fri, 11/21/2014 - 06:51
Want to avoid having your online accounts hacked? Enable two-factor authentication (2FA), a crucial security measure that requires an extra code when signing in from an unfamiliar device. In this post, I explain how to use a mobile app to make your accounts safer.

Android Work takes shape as Google's BYOD Divide surfaces on Play

Fri, 11/21/2014 - 05:33
Google's play to establish Android in the enterprise has taken a step forward with the launch of its BYOD container for productivity apps.

The 12 scams of Christmas

Fri, 11/21/2014 - 05:16
What scams and schemes do you need to watch out for during the holiday season?

Apple iOS Masque flaw dangers: Communication app infiltration discovered

Fri, 11/21/2014 - 04:42
The Masque bug that affects iOS apps has the potential to steal data from legitimate sources, due to a lack of encryption in apps across the board.

Tor's feral fans are its own worst enemy

Thu, 11/20/2014 - 22:05
The brand image of the world's must-have anonymity tool is starting to look a bit tattered. The fans don't like it, but their response isn't helping their cause.

Citadel malware attacking open source password managers

Thu, 11/20/2014 - 16:53
The malware variant also has its eye on online commerce, transaction authentication software

NSA chief admits China could cripple U.S. power grid, financial networks

Thu, 11/20/2014 - 14:49
Because the last thing you want is a potentially hostile country controlling the light switches in America from half the world away.

Will Let's Encrypt threaten commercial certificate authorities?

Thu, 11/20/2014 - 12:09
The new free certificate authority is a great idea, as far as it goes. Should Symantec and the other big CAs be worried? Probably not.

Uber taps former IBM privacy chief amid 'God View' controversy

Thu, 11/20/2014 - 11:52
To help curb the lack of enthusiasm surrounding its questionable business practices, startup Uber is looking toward experienced veterans from tech stalwarts for help.

High volume DDoS attacks rise in Q3 2014

Thu, 11/20/2014 - 11:00
According to Verisign, DDoS attacks going beyond 10Gbps continue to rise, causing a headache for the enterprise.

Got a webcam? You might want to pick a stronger password right about now

Thu, 11/20/2014 - 07:22
Privacy watchdog warns on default passwords as website streams video from unsecured webcams.

Amnesty's Detekt tool wants to help you thwart government spying

Thu, 11/20/2014 - 05:30
The human rights group says the new anti-surveillance tool is a 'strike back' against governments that have overextended their reach.

E-voting not secure enough for Australian federal ballots

Wed, 11/19/2014 - 21:48
Casting a vote at a computer is not on the horizon for Australians, but a parliamentary committee has endorsed electoral rolls, and the scanning and storage of ballot papers.

CipherCloud scores $50 million in latest funding round

Wed, 11/19/2014 - 17:29
Cloud security platform provider CipherCloud has picked up $50 million in a funding round, which was led by Transamerica Ventures.

Details emerge on Windows Kerberos vulnerability

Wed, 11/19/2014 - 14:53
The Windows KDC didn't properly validate parts of Kerberos tickets. It may be possible for admins to detect if they have been exploited.

2014's top ten technology buzzwords to learn and to avoid

Wed, 11/19/2014 - 14:38
Not all buzzwords are bad. Some actually convey an idea, a concept, or a valid technology. However, some exist to confuse, distort, and empower those who don't want you to know what they're talking about.

Google advances SSL with new Chrome versions

Wed, 11/19/2014 - 10:24
The latest stable version of Chrome removes the source of the POODLE bug and SSLv3 support will be out altogether over time. The Canary version disparages implementations not up to standards.

10 top security threats of 2014 (so far)

Wed, 11/19/2014 - 09:23
The top security threats of 2014 include equal parts old mistakes, new adversaries, innocent human nature and the evils that people do.