Even IT security professionals reuse passwords – with 81% admitting to risky habit

Up to 81% of computer security professionals reuse passwords across multiple applications, violating security best practice

PayPal warns of security crisis over new domain names

PayPal has warned of a looming security crisis if new top-level domains such as .bank are brought into use later this year.

Call for new cyber laws after major U.S. banks knocked offline for 249 hours in six weeks

Representative Mike Rogers, Chairman of the Permanent Select Committee on Intelligence, said that Congress needs to act quickly, in an interview with NBC this week. The websites of major U.S. banks have been offline for 249 hours in the past six weeks, due to a series of sustained cyber attacks by an unknown foreign group.

Up to 600,000 gamers at risk as emails and other details stolen from online zombie game

Up to 600,000 gamers at risk as emails and other details stolen from online zombie game

Cybercrime a growing concern for businesses, security spending up at 40% of UK firms

Fears of cybercrime have become a major concern for many businesses – with security spending rising at four out of ten firms, a UK survey has found.

Army faces “enemy within” as 14,000 BYOD devices pose cybersecurity headache

Employees bringing their own devices to work is a security headache for most companies – even, it seems, the U.S. military. A report issued by the U.S. Department of Defense’s Inspector General last week pinpointed serious security failings around 14,000 commercial devices used by soldiers and civilians.

Hello to We Live Security

Security – or censorship? AT&T bans “obscene” passwords

Most security professionals have enough to deal with thanks to insecure passwords – but AT&T seems to want its users to keep them clean, too. The “password restrictions” page for AT&T users says, “The password can’t contain the words “password”, “admin”, “pa$$w0rd” or other common words. The password can’t contain obscene language.”

British cyber intelligence agency admits to basic password security errors

Britain’s hi-tech government intelligence agency GCHQ should know better than to send passwords in plain text via email – but has been doing so due to “legacy systems”, it admitted in a statement this week.

Don’t save that date – bogus wedding invitations are latest spam trend but also deja vu

Emailed wedding invitations have popped back up as a way to distribute malware Will this tactic join other malware-email staples like malicious tax season messages.

Pirated software use triples – leaving PC users at risk of infection

Use of pirated and counterfeit Windows software has tripled since 2006, according to analysts IDC – creating a fertile breeding ground for malware. For the report, entitled ‘The Dangerous World of Pirated and Counterfeit Software’, IDC analysts conducted 533 tests on counterfeit software from P2P and web sources.

Schneier, Winkler and the Great Security Awareness Training Debate

The value of educating people about cyber security is hotly debated these days, with opposing views on security awareness training coming from Bruce Schneier and Ira Winkler. Stephen Cobb weighs in.

Gamers warned of risks of “always online” games such as SimCity and Diablo

The new trend for “always online” games such as SimCity and Blizzard’s Diablo 3 may be putting gamers at risk, experts warn. The games, which require an internet connection even for single-player gaming, are designed to protect game companies from piracy.

James Bond steps in to defend British businesses against cyber attack

British cyber security experts from intelligence services such as MI5 are to join forces with 160 top British firms to defend against cyber attacks.

Carberp: the never ending story

Aleksandr Matrosov reveals changes in banking Trojan Carberp relating to Java/Spy.Banker (AgentX.jar) and gaining remote access using legitimate software as backdoor components.

Apple ID password and verification two-step plays on

Stepping up protection of the Apple ID falters as password reset bug emerges before two-step verification is fully implemented.

Criminal hacking continues to cause headaches for Yahoo members

Malicious spam may still be spreading across Yahoo! Mail accounts. We show you how to turn on the added verification process that Yahoo! offers.

Spammers leverage news of a new Pope and other world events

Major world events always bring with them an upsurge in related spam and the election and inauguration of a new Pope is no exception.

From flicks to clicks: Mac OS X Trojan Adware.Yontoo infects via fake codec

Protection and remediation tips for Mac OS X users targeted by a Trojan adware plugin called Yontoo hidden behind movie trailer and other media playing links, generating money for criminals exploiting online ad schemes.

NIST Vulnerability Database Down

Follow Us

Sign up to our newsletter

The latest security news direct to your inbox

ESET Virus Radar

Archives

Select month
our experts

Aryeh Goretsky

Lysa Myers

David Harley

Stephen Cobb

Robert Lipovsky

Joan Calvet

Sébastien Duquette

Graham Cluley

Cameron Camp

Jean-Ian Boutin

Raphael Labaca Castro

Olivier Bilodeau

Marc-Etienne M.Léveillé

Copyright © 2014 ESET, All Rights Reserved.