Endpoint Security

RSS

Endpoint security news, solutions, and analysis for IT professionals

AutoIt scripting increasingly used by malware developers

Posted May 7, 2013 - 8:35 am

AutoIt, a scripting language for automating Windows interface interactions, is increasingly being used by malware developers thanks to its flexibility and low learning curve, according to security researchers from Trend Micro and Bitdefender.
- Quick Read
Antivirus is ailing: Here are 5 firms ready to replace it

Posted May 3, 2013 - 3:51 pm

AV companies have been at war with the bad guys for much of the last two decades. And guess what? The bad guys won. Now that the days of antivirus software being in the front line of defense against malware are over, what companies are ready to step in and take up arms against sophisticated attacks and malware? Here are five to keep your eye on.
- Quick Read
Researchers find malware targeting online stock trading software

Posted April 18, 2013 - 11:54 am

Security researchers from Russian cybercrime investigations company Groub-IB have recently identified a new piece of malware designed to steal login credentials from specialized software used to trade stocks and other securities online.
- Quick Read
Researchers find APT malware that monitors mouse clicks to evade detection

Posted April 2, 2013 - 10:42 am

Researchers from security vendor FireEye have uncovered a new APT (advanced persistent threat) that uses multiple detection evasion techniques, including the monitoring of mouse clicks, to determine active human interaction with the infected computer.
- Quick Read
Ransomware leverages victims' browser histories for increased credibility

Posted April 1, 2013 - 11:45 am

The authors of police-themed ransomware have started using the browsing histories from infected computers in order to make their scams more believable, according to an independent malware researcher.
- Quick Read
Most Java-enabled browsers vulnerable to widespread Java exploits, Websense says

Posted March 26, 2013 - 3:23 pm

Most browser installations use outdated versions of the Java plug-in that are vulnerable to at least one of several exploits currently used in popular Web attack toolkits, according to statistics published Monday by security vendor Websense.
- Quick Read
Researchers uncover vSkimmer malware targeting point-of-sale systems

Posted March 22, 2013 - 7:56 am

A new piece of custom malware sold on the underground Internet market is being used to siphon payment card data from point-of-sale (POS) systems, according to security researchers from antivirus vendor McAfee.
- Quick Read
Researchers find TeamViewer-based cyberespionage operation

Posted March 21, 2013 - 10:28 am

Security researchers have uncovered yet another ongoing cyberespionage operation targeting political and human rights activists, government agencies, research organizations and industrial manufacturers primarily from Eastern European countries and former Soviet Union states.
- Quick Read
White Paper

Rethinking Your Enterprise Security - Critical Priorities to Consider

Posted March 19, 2013 - 10:00 pm

Forward-thinking enterprises realize they need to focus on a sustainable approach to security and risk management-one that is designed to address the new wave of vulnerabilities that prevail.
- Quick Read
Researchers find vulnerability in EA's Origin platform

Posted March 15, 2013 - 7:52 pm

Users of Origin, the game distribution platform of Electronic Arts (EA), are vulnerable to remote code execution attacks through origin:// URLs, according to two security researchers.
- Quick Read
3G and 4G USB modems are a security threat, researcher says

Posted March 15, 2013 - 12:21 pm

The vast majority of 3G and 4G USB modems handed out by mobile operators to their customers are manufactured by a handful of companies and run insecure software, according to two security researchers from Russia.
- Quick Read
Kaspersky Internet Security 2013 bug can lead to system freeze

Posted March 7, 2013 - 1:00 pm

Kaspersky Lab's Internet Security 2013 product contains a bug that can be exploited remotely, especially on local networks, to completely freeze the OS on computers running the software.
- Quick Read
Following hack, Evernote speeds move to two-factor authentication

Posted March 5, 2013 - 10:31 pm

Evernote is speeding up its plans to offer two-factor authentication to users following a recent data breach that exposed user names, email addresses and encrypted passwords.
- Quick Read
Cybercriminals using digitally signed Java exploits to trick users

Posted March 5, 2013 - 1:52 pm

Security researchers warn that cybercriminals have started using Java exploits signed with digital certificates to trick users into allowing the malicious code to run inside browsers.
- Quick Read
Cyber's Strangelovian moment?

Posted February 25, 2013 - 10:03 pm

A steady drumbeat of news about sophisticated cyber attacks against our government and leading institutions has attendees at this year's RSA conference in a fever. And that may be bad for security.
- Quick Read
Many companies likely affected by compromise of popular iOS developer forum

Posted February 20, 2013 - 5:55 pm

The administrators of a popular iOS developer Web forum called iPhoneDevSDK confirmed Wednesday that it had been compromised by hackers who used it to launch attacks against its users. Security experts believe the site served as a gateway for the recent attacks against Twitter, Facebook and Apple employees and that many other companies might be affected as well.
- Quick Read
Adobe to release emergency patches for Reader, Acrobat

Posted February 17, 2013 - 7:47 pm

Adobe Systems said it will release patches for two critical vulnerabilities disclosed last week that are actively being used by attackers.
- Quick Read
Adobe confirms zero-day exploit bypasses Adobe Reader sandbox

Posted February 14, 2013 - 9:55 am

A recently found exploit that bypasses the sandbox anti-exploitation protection in Adobe Reader 10 and 11 is highly sophisticated and is probably part of an important cyberespionage operation, the head of the malware analysis team at antivirus vendor Kaspersky Lab said.
- Quick Read
Zero-day PDF exploit affects Adobe Reader 11 and earlier versions, researchers say

Posted February 13, 2013 - 10:57 am

Researchers from security firm FireEye claim that attackers are actively using a remote code execution exploit that works against the latest versions of Adobe Reader 9, 10 and 11.
- Quick Read
DaVinci surveillance malware distributed via zero-day Flash Player exploit, researchers say

Posted February 12, 2013 - 4:34 pm

Political activists from the Middle East were targeted in attacks that exploited a previously unknown Flash Player vulnerability to install a so-called lawful interception program designed for law enforcement use, security researchers from antivirus vendor Kaspersky Lab said Tuesday.
- Quick Read
McAfee enhances its business security management and SIEM products

Posted February 12, 2013 - 10:22 am

McAfee is enhancing its business security platform by adding near real-time querying capabilities to its ePolicy Orchestrator software and by integrating it with its security information and event management (SIEM) product to automatically initiate endpoint security policy changes.
- Quick Read
Security stories to watch: Security firm Bit9 hacked. Also: Microsoft megapatch and identity management

Posted February 11, 2013 - 4:20 pm

The hack of security firm Bit9 reminds us that application whitelists work great at stopping malware ... until they don't. And: Microsoft prepares a mystery 'double patch' of the Internet Explorer web browser, fueling speculation.
- Quick Read
The Weekly Hash - February 8, 2013

Posted February 8, 2013 - 12:35 pm

From the world’s new largest prime number to the key to BlackBerry 10’s success in Canada to one group not happy with all the bugs Microsoft is squishing, we make fun of some of the this week’s top tech stories
- Quick Read
White Paper

Delivering Endpoint Integration and Control

Posted February 7, 2013 - 12:15 pm

Read this report to learn more about the offerings of platform-based secure content and threat management and why businesses should put an increased focus around an endpoint security platform implementation.
- Quick Read
White Paper

Coping in the Chaos

Posted February 7, 2013 - 12:15 pm

Businesses are increasingly concerned about the risks they face. Yet despite evidence of the dangers, this 2012 Global IT Risks Survey reveals an increasingly chaotic security landscape.
- Quick Read

Join today!

Get FREE access to premium content, in-depth reviews, practical tips

6 IT hiring tips to weed out the duds
Rule #1: Don't hire out of desperation.
4 free tools to simulate a cloud connection
Linux-based WAN emulation tools worth a look.
15 common IT resume mistakes (and how to avoid them)
Learn how to build a better resume.

content

Ask a Question

Endpoint Security

White Paper

White Paper

White Paper

Join today!

Review

Marketplace

Sponsored Links

The IDG Network