Security News

FBI warns of SIM-swap scams, IBM finds holes in visitor software, 13-year-old girl charged over JavaScript prank...
2019-03-09 08:30

Tired: Booth babes. Wired: Floof babes. Expired: Conference hall carpets Roundup This week we had an NSA reverse-engineering toolkit released at the RSA Conference, a buffer bashed aboard British...

JavaScript library used for sneak attack on Copay Bitcoin wallet
2018-11-28 12:51

A mystery payload sneaked into a hugely popular JavaScript library was part of a plot to ransack Bitcoins from BitPay’s Copay mobile cryptocoin wallet, it has been alleged.

Talk about a cache flow problem: This JavaScript can snoop on other browser tabs to work out what you're visiting
2018-11-21 07:04

Yes, even the Tor browser can be spied on by this nasty code Special report Computer science boffins have demonstrated a side-channel attack technique that bypasses recently-introduced privacy...

StatCounter fingers cache-poisoning caper for Bitcoin-slurping JavaScript hijack
2018-11-08 04:52

The good news? Nobody appears to have lost any Bitcoin, says Gate.io This week's hijacking of StatCounter's JavaScript to swipe Bitcoins from a crypto-coin exchange was the result of a web cache...

Hackers seed StatCounter with nasty JavaScript in elaborate bitcoin theft scheme
2018-11-06 23:24

Gate.io exchange believed to be target of embedded attack One of the top traffic metrics sites on the internet is reportedly being used by criminals to steal bitcoins from a currency exchange.…

Google logins make JavaScript mandatory, Huawei China spy shock, Mac malware, Iran gets new Stuxnet, and more
2018-11-03 13:07

Plus, SystemD gets system de-bugged, again Roundup This week there were Hacked Home Hubs, buggered BBC Bits, and PortSmash privilege punch-ups.…

Google won't let you sign in if you disabled JavaScript in your browser
2018-11-01 14:51

Google announces for new security features to protect Google accounts.

One-in-two JavaScript project audits by NPM tools sniff out at least one vulnerability...
2018-08-22 19:57

...and those devs are then applying patches, we hope JavaScript library custodian NPM, after years of security scrambling, looks to be getting a grip on its code safety.…

How evil JavaScript helps attackers tag possible victims – and gives away their intent
2018-08-09 10:55

Countdown to ancient IE a telltale sign of malice A honeypot project operated by Japanese comms company NTT has turned up a bunch of new approaches to malware obfuscation.…

Intertrust and Jscrambler launch joint solution to protect mobile and JavaScript applications
2018-08-08 21:38

Intertrust Technologies and Jscrambler announced a jointly-sourced product suite App Shield 360 that provides a set of application shielding solutions for both native and JavaScript applications...