VPNs: What you need to know
Credit to Author: Alex Drozhzhin| Date: Thu, 30 Mar 2017 16:41:56 +0000
There’s been a lot of talk lately about privacy protection and VPNs. But what exactly is a VPN? We explain in simple words.
Read MoreComputer Security Articles
RSS Reader for Computer Security Articles
Month: March 2017
The World’s Biggest Porn Site Goes All-In on Encryption
Credit to Author: Brian Barrett| Date: Thu, 30 Mar 2017 16:00:59 +0000
Now that Pornhub’s going HTTPS, your private browsing will be a lot more private. The post The World’s Biggest Porn Site Goes All-In on Encryption appeared first on WIRED.
Read MoreIt Is Tax (and Fraud) Time Again. Are You Ready?
Credit to Author: Anthony Giandomenico| Date: Thu, 30 Mar 2017 09:03:39 -0700
One of the main reasons for the rapid growth in tax refund fraud is that it takes little effort to file a false return. A valid name, date of birth, and Social Security number are all one needs to file a return. Given the unprecedented number of data thefts last year, it is obvious this information is readily available. A quick trip to the Dark Web can provide criminals with the ability to purchase millions of files with this data.
Read MoreMillions of websites affected by unpatched flaw in Microsoft IIS 6 web server
Credit to Author: Lucian Constantin| Date: Thu, 30 Mar 2017 08:11:00 -0700
A proof-of-concept exploit has been published for an unpatched vulnerability in Microsoft Internet Information Services 6.0, a version of the web server that’s no longer supported but still widely used.
The exploit allows attackers to execute malicious code on Windows servers running IIS 6.0 with the privileges of the user running the application. Extended support for this version of IIS ended in July 2015 along with support for its parent product, Windows Server 2003.
Even so, independent web server surveys suggest that IIS 6.0 still powers millions of public websites. In addition, many companies might still run web applications on Windows Server 2003 and IIS 6.0 inside their corporate networks, so this vulnerability could help attackers perform lateral movement if they access such networks through other means.
To read this article in full or to leave a comment, please click here
Three privacy tools that block your Internet provider from tracking you
Credit to Author: Ian Paul| Date: Wed, 29 Mar 2017 08:04:00 -0700
It’s official: Congress has sold you out to Internet service providers, passing a bill that dismantles Internet privacy rules and allows ISPs to sell your web history and other personal information without your permission. Assuming President Trump signs the bill into law, it means anyone concerned about privacy will have to protect themselves against over zealous data collection from their ISP.
Some privacy-conscious folks are already doing that—but many aren’t. If you want to keep your ISP from looking over your shoulder for data to sell to advertisers, here are three relatively simple actions you can take to get started.
To read this article in full or to leave a comment, please click here
Tech support scammers and their banking woes
Credit to Author: William Tsing| Date: Thu, 30 Mar 2017 15:00:54 +0000
 | |
| We all know about tech support scams by this point. Unfortunately for the scammers, banks know this as well, making it quite difficult at times to maintain an account to store the criminal’s ill-gotten gains. So how does the enterprising criminal cash out with your money? Let’s take a look. Categories: Tags: fraudscamtech supporttech support scamsTSS |
The post Tech support scammers and their banking woes appeared first on Malwarebytes Labs.
Read MoreIf You Want a VPN to Protect Your Privacy, Start Here
Credit to Author: Lily Hay Newman| Date: Thu, 30 Mar 2017 11:18:16 +0000
A VPN’s not a perfect solution to your privacy problems, but it’s a start. The post If You Want a VPN to Protect Your Privacy, Start Here appeared first on WIRED.
Read MoreOpen-source developers targeted in sophisticated malware attack
Credit to Author: Lucian Constantin| Date: Thu, 30 Mar 2017 04:30:00 -0700
For the past few months, developers who publish their code on GitHub have been targeted in an attack campaign that uses a little-known but potent cyberespionage malware.
The attacks started in January and consisted of malicious emails specifically crafted to attract the attention of developers, such as requests for help with development projects and offers of payment for custom programming jobs.
The emails had .gz attachments that contained Word documents with malicious macro code attached. If allowed to execute, the macro code executed a PowerShell script that reached out to a remote server and downloaded a malware program known as Dimnie.
To read this article in full or to leave a comment, please click here