News aggregator

The former San Francisco network administrator who refused to hand over passwords for one of the city's networks was denied a new trial on Friday and is expected to be sentenced Aug. 6, a spokeswoman for the district attorney's office said.

A few companies in the Fortune 500 need to upgrade their Web browsers. And while they're at it, a little in-house training on social engineering wouldn't be a bad idea, either.

As many as four million users of Android phones have downloaded wallpaper apps that swipe personal data from the phone and transmit it to a Chinese-owned server, a mobile security firm said today.

U.S. Defense Secretary Robert Gates said military officials are launching a review of IT security procedures following the leaking of tens of thousands of classified documents related to the war in Afghanistan.

If you use Citigroup's Citi Mobile iPhone app, make sure you update to the new version released this week. The update fixes a security flaw that, according to a Citi statement, could save data "including account numbers, bill payments and security access codes--in a hidden file on users' iPhones."

Chris Paget wants to demonstrate how easy it is to snoop in on mobile-phone conversations. The question is: Will the federal authorities allow it?

Cybercriminals are increasingly looking at business rather than consumer accounts to hack as banks scramble to shore up their defenses, according to an executive from vendor IronKey.

AirTight is defending its claim to have uncovered a vulnerability in the 802.11 specification, and to have mounted an undetectable insider attack based on it. Some have dismissed it as a "publicity stunt."

A Defcon contest that invites contestants to trick employees at U.S. corporations into revealing not-so-sensitive data has rattled some nerves.

Gibbs ponders the problems with employees and social networking and suggests that nannying won't cut it.

A security expert found a way to catch the talks at Black Hat for free, thanks to bugs in the video streaming service used by the security conference.

The U.S. needs to consider working with other leading nations to develop rules of engagement in cyberspace, retired general and former director of the CIA Michael Hayden said during a keynote address at the Black Hat conference here on Thursday.

Another student this week sued the suburban Philadelphia school district embroiled in allegations of spying on high schoolers using their school-issued laptops.

A security researcher named Barnaby Jack amazed attendees at the Black Hat security conference by hacking ATM machines in a session titled "Jackpotting Automated Teller Machines Redux". There are some important lessons to be learned from the hacks Jack demonstrated, and they apply to more than just ATM machines.

Security concerns over Facebook have been raised yet again after a security consultant collected the names and profile URLs for 171 million Facebook accounts from publicly available information. The consultant, Ron Bowes, then uploaded the data as a torrent file allowing anyone with a computer connection to download the data.

The data on WiFi access points gathered by Google in building its Streetview mapping system most likely did not include personal data, the UK Information Commissoner’s Office (ICO) has ruled.

Security company Qualys has released a new open source tool, BlindElephant, which can accurately fingerprint web applications down to version level in order to better manage the security issues which now plague such software.

Hackers appear to be increasingly counting on configuration problems and programming errors rather than software vulnerabilities in order to steal information from computer systems, according to a new study from Verizon.

Details from 100 million Facebook profiles have been made available on the web by a security consultant.

A number of popular Android applications can reportedly collect your mobile device's personal information and then send that data to a Chinese-owned Website. The information in question includes your device's phone number, subscriber identifier number and, in some cases, your voicemail password, according to Phandroid.