Security News

Researchers point out the holes in NoScript's default whitelist (Help Net Security)
2015-07-01 13:03

Security researchers Linus Särud and Matthew Bryant hav recently discovered some pretty big holes in NoScript, a popular Firefox plugin that prevents executable web content such as JavaScript, Java, F...

Researchers eliminate coding errors by using good code from "donor" apps (Help Net Security)
2015-07-01 07:25

The main appeal of open source software is in the fact that its source code can be reviewed by anyone and, theoretically, stealthy backdoors and unintentional errors should be spotted and removed quic...

Researcher proves how easy it is to pull off homographic phishing attacks (Help Net Security)
2015-06-30 09:32

Security consultant Paul Moore has managed to register a domain that, at first glance, looks like that of UK-based Lloyds Bank, and get a valid TLS certificate for it from CloudFlare. He did so by...

Researcher Says LG App Update Mechanism Doesn’t Verify SSL Cert (Threatpost)
2015-06-29 19:01

Many smartphones manufactured by LG contain a vulnerability that can allow an attacker to replace an APK file with a malicious file of his choice. The problem is the result of several conditions...

Researcher tests Tor exit nodes, finds not all operators can be trusted (Help Net Security)
2015-06-26 14:44

While the Tor anonymity network conceals (relatively successfully) a user's location and Internet activity from anyone who might want to know about it, users should be aware of the fact that it does n...

Keyboard app bug puts millions of Samsung mobile users at risk, researcher claims (Help Net Security)
2015-06-17 07:15

A vulnerability in the Swift keyboard, which comes pre-installed on Samsung mobile devices, can be exploited by remote attackers to secretly install malicious apps, access the device's camera and micr...