Top e-commerce sites still fail to warn users who choose “password”

Two-thirds of top e-commerce sites still accept the weakest passwords, such as “123456” and “password” without warning users that these are the very first passwords hackers will use in attempts to breach their accounts, according to a new survey.

Fridge attacks “raise big questions” says Microsoft security chief

The emerging ‘internet of things’ raises big security questions, and vulnerabilities in connected devices such as ‘smart’ fridges may force companies to work together in a way never previously seen, according to Microsoft’s Jan Neutze.

Whatsapp security fears over rogue apps ‘reading’ user chats

Hit messaging app Whatsapp may not be as secure as its 450 million users believe – after an independent security consultant revealed a loophole which rogue app developers could use to steal Android users’ entire Whatsapp history.

Critical Internet Explorer zero-day vulnerability patched by Microsoft

Microsoft releases a fix for a zero-day vulnerability that has already been exploited by hackers in targeted attacks against some organisations. Don’t delay!

Smartphones with fingerprint-scanning screens ‘on sale by summer’

Smartphones such as iPhone 5S rely on buttons to scan fingerprints – but the CEO of biometrics firm CrucialTec says that smartphones with a new hi-tech bezel-free screen which scans fingerprints will go on sale this summer.

Twitter kills off ‘stalker’ bug that let users spy on protected Tweets

Twitter has removed a bug that allowed site users to spy on protected accounts, reading supposedly protected Tweets via SMS or push notifications, regardless of whether users had approved them as followers.

Google Glass app offers new level of security for ATM users

A futuristic app uses Google Glass to add an extra layer of privacy for users withdrawing cash from ATM machines – by displaying a one-time personal identification number (PIN) which only the Glass user can see.

Financial files from Mt Gox supposedly ‘leak online’ after CEO targeted

A file of material purporting to include detailed information on trades at the Bitcoin exchange Mt Gox, has surfaced online, after attackers targeted the personal blog and Reddit account of CEO Mark Karpeles.

The Billgate Foundation – the fall for money, eh many…

Recently it was announced that Satya Nadella will be Steve Ballmer’s successor as CEO of Microsoft. Of course for the cybercriminals this is the time to dust off and polish the good old Microsoft Lottery scam and update it.

Five ‘new friends’ to avoid like the plague on social networks

Befriending the wrong person on Facebook can hand a criminal the tools for an identity theft attack – and on LinkedIn, talking to the wrong ‘recruiter’ can lead to disaster.

Justin Bieber is the latest celebrity to have his Twitter account hacked

Maybe it’s time to think twice before rushing to click on a link, next time your favourite celebrity says something bizarre on Twitter.

Welcome to We Live Security!

Welcome to the new ESET blog: We Live Security. In fact, We Live Security is a lot more than a blog: it contains the same great content you have enjoyed on blog.eset.com, but also includes new features and a wider range of content. For example, here’s a podcast talking about the new site, one of

Myths Of The Target Breach

How cybercriminals ‘market’ email attacks – and why LinkedIn lures are today’s prize phish

Cybercriminals ‘manage’ phishing emails using techniques similar to those used by marketing agencies, including the use of ‘test audiences’ to see how effective a particular email is, according to an email security specialist.

Free Wi-Fi isn’t worth the risk, warns Euro police chief

The head of Europol’s cyber crime division, Troels Oerting, has warned against using public Wi-Fi hotspots, after the law enforcement agency has seen an increase in the misuse of public Wi-Fi for identity theft and financial attacks.

‘Secure’ web browsing can leak private data to employers and ISPs, researchers warn

University of Berkeley researchers have revealed a technique for identifying individual web pages visited ‘securely’ by users, with up to 89% accuracy, revealing data such as health conditions, financial details and sexual orientation.

Courier Scams – don’t give away your bank card

If someone rings you up to tell you that your bank card has been compromised, it may be because they want to get their own hands on it.

Android phones and tablets ship “pre-infected” with malware

Android phones and tablets from four different manufacturers are arriving with malware “pre-installed” – a bogus version of Netflix which sends password and credit card information to Russia, according to app security specialist Marble Security.

WWF warns of ‘arms race’ with ‘cyberpoachers’ targeting endangered species

Criminals seeking to kill endangered species and sell trophies online are turning to increasingly hi-tech methods to target their prey – including cyber attacks built to steal information on where animals patrol, according to the World Wildlife Fund’s Wildlife Crime division.

Bitcoin bank Flexcoin shuts down after attackers loot $570,000 from “hot wallet”

The attackers were able to steal all the bitcoins stored in the bank’s “hot wallet” – the portion of its funds on computers accessible via the internet – due to a transaction flaw in its code.

Follow Us

Sign up to our newsletter

The latest security news direct to your inbox

ESET Virus Radar

Archives

Select month
our experts

Stephen Cobb

Robert Lipovsky

Joan Calvet

Sébastien Duquette

Graham Cluley

David Harley

Cameron Camp

Lysa Myers

Jean-Ian Boutin

Raphael Labaca Castro

Olivier Bilodeau

Marc-Etienne M.Léveillé

Copyright © 2014 ESET, All Rights Reserved.