Jeremy KirkAustralia Correspondent, IDG News Service

Jeremy reports on security and regional news for the IDG News Service.

monster gremlin bug

Zero-day vulnerability found in a WordPress image utility

Hackers are exploiting a problem with an image-resizing utility called TimThumb that is widely used in many themes for the blogging platform WordPress. Some fixes have been made to the latest version.

lock

Lion passwords can be pilfered with new tool

A company that makes password recovery tools has released one that can snatch passwords from a locked or sleeping Mac running OS X Lion by plugging another computer into the Mac's FireWire port.

Passwords in Mac OS X Can Be Pilfered With New Tool

A company that makes password recovery tools has released one that can snatch passwords from a locked or sleeping Macintosh running Mac OS X Lion by plugging into the Mac's FireWire port.

Researchers find dangerous vulnerability in Skype

A security consultant has notified Skype of a cross-site scripting flaw that could be used to change the password on someone's account.

Apple developing fixes for dangerous iOS vulnerabilities

Apple said on Thursday that it is developing a fix for vulnerabilities that affect its iPhone, iPad and some iPod touch models, a problem that the German government warned could be used to steal confidential data.