Security Hardware and Software - News, Features, and Slideshows


  • IBM, HP, Microsoft lead patching laggards, says bug buyer

    IBM, Hewlett-Packard (HP) and Microsoft led the list of companies that failed to patch vulnerabilities within six months of being notified by the world's biggest bug bounty program, according to HP TippingPoint's Zero-Day Initiative (ZDI).

  • Two zero-day vulnerabilities found in Flash Player

    Two newly discovered vulnerabilities in Adobe's Flash Player can be exploited to execute arbitrary code remotely, according to <a href="">advisories</a> from the U.S. Computer Emergency Readiness Team (US-CERT) and various security research companies.

  • Security firms knock heads over Shady RAT hacks

    U.S. and Russian antivirus vendors took shots at each other as they quarreled over a recent report of a cyber campaign that allegedly infiltrated scores of Western governments, organizations and corporations.

  • Security experts knock Google on PC infection warnings

    Google has taken the unprecedented step of warning millions of users whose PCs it believes are infected with fake security software and other malware, the company said yesterday. But some security experts are leery of Google's move.

  • Fake security software takes aim at Mac users

    Scammers are distributing fake security software aimed at the Mac by taking advantage of the news that al-Qaeda leader Osama Bin Laden has been killed by U.S. forces, a security researcher said today.

  • Failure to encrypt portable devices inexcusable, say analysts

    The continuing failure by most enterprises to encrypt sensitive data stored on laptops and other mobile devices is inexcusable, analysts said following BP's disclosure this week of a <a href="">data compromise involving a lost laptop</a> .

  • Caution urged in wake of RSA security breach

    The relatively scant information released by EMC's RSA security group on Thursday in connection with the theft of SecurID authentication technology code is fueling considerable speculation about the nature of the breach and its impact on enterprises.

  • Attack mitigation tools fall short, security vendors say

    SAN FRANCISCO -- Acknowledging that security technologies to prevent cyberattacks are insufficient, several vendors at the RSA Conference here urged companies that are making security plans to assume that at some point, they will be breached.

  • Adobe patches 42 bugs in Reader, Flash

    Adobe yesterday patched 29 vulnerabilities in Reader, it's PDF viewer, and 13 more in Flash, the popular Web media browser plug-in, as part of an even larger quarterly security update.

  • Keyless systems on cars easily hacked, researchers say

    The passive keyless entry and start (PKES) systems supported by many modern cars are susceptible to attacks that allow thieves to relatively easily steal the vehicles, say security researchers at Switzerland's ETH Zurich University.