Lucian ConstantinRomania Correspondent, IDG News Service

Lucian Constantin writes about information security, privacy, and data protection for the IDG News Service.

painter2015 01

Corel software vulnerabilities let attackers execute malicious code on your PC

Malicious DLLs will be executed if stored in the same directory as media files opened with the affected programs, researchers said.

on pcworld.com

apple 2014 4

Apple blocks tool that brute-forces iCloud passwords

The tool allowed attackers to try a large number of passwords for Apple ID accounts

Western Digital My Passport Pro

Thunderbolt devices can infect MacBooks with persistent rootkits

The rogue code will run in the boot ROM and will be hard to detect or remove, a researcher said

bitdefender box

Bitdefender's BOX hardware protects your entire home network, not just your PC

Bitdefender BOX can replace or run alongside a home router to scan all network traffic for security threats

snapchat

Top messaging apps flat-out flunk EFF's security review

The organization ranked 39 digital communication tools based on security features and best practices

on pcworld.com

dropbox sync

Dropbox says it wasn't hacked after 7 million alleged user credentials appear online

The credentials leaked by an alleged hacker online were likely stolen from other services, the company said.

iPad Air

Is that used iPad stolen? Apple creates tool for would-be buyers to check

The tool will help prospective buyers of used iPhones and iPads to determine if the devices were lost or stolen

ios8 icon tealbackground

Apple's iOS 8 fixes enterprise Wi-Fi authentication hijacking flaw

A weakness in Apple's Wi-Fi implementation could give hackers access to enterprise wireless networks, researchers said

on pcworld.com

icloud red bckgnd

Hackers launch Apple ID phishing campaign playing on iCloud security worries

Phishing emails masquerade as security alerts from Apple about rogue iTunes purchases, researchers from Symantec said

photosforosx

Cyberespionage group uses port of Windows backdoor to attack OS X

The new malware program is an OS X version of a Windows backdoor called XSLCmd, researchers from FireEye said.

Hackers behind iPhone ransom attacks arrested in Russia

A man and a teenaged boy are accused of using phishing and social engineering attacks to hijack Apple IDs and lock iOS devices

safari logo

Safari 6.1.4 and 7.0.4 address critical flaws, iOS patches missing

Apple patched 22 vulnerabilities in Safari, the majority of which could allow remote code execution.

Mozilla to strengthen SSL certificate verification in Firefox

The software maker will pay US$10,000 for any critical vulnerability found in its new certificate verification code

on pcworld.com

Mac OS X

Apple users put at risk by 3-week delay between OS X and iOS patches, researchers say

IOS users were kept vulnerable for three weeks to known security issues previously patched in Safari for OS X, a former Apple employee said.

Mysterious 'Unflod' malware steals Apple credentials from jailbroken iOS devices

Some iOS users found a malicious library of unknown origin on their jailbroken devices