Lucian ConstantinRomania Correspondent, IDG News Service

Lucian Constantin writes about information security, privacy, and data protection for the IDG News Service.

Apple iPhone 5S (1)

Thousands of iOS apps infected by XcodeGhost

Security researchers have identified over 4,000 iOS apps that have malicious code added by a rogue version of the Xcode development tool.

iOS 9 on iPhone 6

$1 million bounty dangled for Apple iOS 9 jailbreak exploits

Zerodium, an exploit acquisition company, promises to pay $1 million to researchers who provide it with an exclusive, browser-based and untethered jailbreak for the latest Apple iOS 9 operating system.


Vulnerability in enterprise-managed iOS devices puts business data at risk

A vulnerability in the iOS sandbox for third party applications, like those installed by companies on their employees' devices, can expose sensitive configuration settings and credentials.

computer security stock image

OpenSSL fixes severe flaw that could enable man-in-the-middle attacks

The vulnerability allows attackers to generate rogue certificates that pass OpenSSL's validation

adobe flash logo

Adobe patches zero-day Flash Player flaw used in targeted attacks

The vulnerability has been exploited by a China-based cyberespionage group for several weeks, security firm FireEye says.

iPhone 6 and 6 Plus have raised cameras.

Fraud campaign installs rogue app on non-jailbroken iPhones

The attackers are likely abusing Apple's iOS Developer Enterprise Program, researchers said

apple watch on wrist 2

First software update for Apple Watch includes critical security fixes

The update patches 13 vulnerabilities and updates the trusted root SSL certificates.

ios8safari primary

URL-spoofing bug in Apple's Safari could enable hard to detect phishing attacks

A researcher developed code that can trick Safari into showing a different URL in its address bar than the one currently loaded.

mackeeper icon

Controversial MacKeeper security program opens critical hole on Mac computers

The program's developers are urging users to update to its latest version as soon as possible

gtx 960 primary

Stealthy Linux GPU malware can also hide in Windows PCs, maybe Macs

A team of anonymous developers is trying to raise awareness about GPU malware.

password alert

Security researchers poke holes in Google's anti-phishing Chrome extension

Security researchers found nine different ways to defeat Google's Password Alert extension for Chrome.

security hole in fence clouds gap opening

Second HTTPS snooping flaw breaks security for thousands of iOS apps

Hackers can exploit the vulnerability to launch man-in-the-middle attacks and decrypt traffic from the affected apps.


HTTPS snooping flaw in third-party library affected 1,000 iOS apps with millions of users

The flaw in the AFNetworking library broke HTTPS certificate validation, enabling man-in-the-middle attacks


Why Yahoo's new on-demand password system is no two-factor authentication killer

The new authentication option offers better security than static passwords, but it's not as strong as two-step verification


Snowden docs show CIA's attempts to hack Apple devices

Documents leaked by Edward Snowden detail how the CIA repeatedly tried to crack the security in Mac OS X and iOS applications.