The Flame cyberespionage attack took a new twist today as Microsoft issued an emergency patch for all versions of Windows after it discovered the attackers had abused one of its digital certificates to help spread the infection from one machine to others within the targeted organization. Continue reading Microsoft With Digital Certificate Hacked
The Android platform continues to be a popular playground for malicious activity, with hijacked websites now being found that spread malware, researchers said Thursday.
According to a Symantec blog post, Android devices are being infected with a trojan thanks to website-injection campaigns that prompt an automatic download of a fake Android security update. Continue reading Android malware spreads via website-injection campaigns
DG News Service – Exploit code for a recently patched denial-of-service (DoS) vulnerability that affects Microsoft’s ASP.NET Web development platform has been published online, therefore increasing the risk of potential attacks.
The vulnerability, identified as CVE-2011-3414, was disclosed in December at the Chaos Communication Congress, Europe’s largest and oldest hacker conference. Shortly afterward, Microsoft published a security advisory and released an out-of-band patch for the flaw. Continue reading Attack code published for serious ASP.NET DoS vulnerability