Lucian ConstantinReporter, IDG News Service, IDG News Service

Lucian Constantin writes about information security, privacy and data protection.

Mysterious 'Unflod' malware steals Apple credentials from jailbroken iOS devices

Some iOS users found a malicious library of unknown origin on their jailbroken devices

Adobe patches a critical flaw in Flash Player and AIR shown at Pwn2Own contest

Adobe Systems addressed two remote code execution flaws, including one demonstrated at the Pwn2Own hacking competition last month.

on pcworld.com

Fake Tor app has been sitting in Apple's App Store for months, Tor Project says

Apple has not removed the fake app so far despite being notified in December, Tor developers say

on pcworld.com

New iOS flaw allows malicious apps to record touch screen presses

The captured touch screen data could be used to reconstruct what users typed

Snapchat vulnerability can be exploited to crash iPhones, researcher says

Snapchat request tokens can be resused to launch denial-of-service attacks against the app's users.

on pcworld.com

BYOD security

Researchers: Tech support scammers are targeting mobile users

Researchers from security firm Malwarebytes spotted a tech support scam targeting smartphone and tablet users, while the Federal Trade Commission is warning consumers about scams offering tech support refunds.

on pcworld.com

target

Target point-of-sale terminals were infected with malware

The company's CEO confirmed that attackers used malware to steal credit and debit card data from PoS systems

on pcworld.com

isight camera

Researchers: Older Mac webcams can spy without activating warning light

Researchers from Johns Hopkins University created an application that can disable the LED on first-generation iSight cameras while in use.

Google fixes Chrome vulnerabilities exploited at Pwn2Own contest

New versions of Chrome for Windows, Mac, Linux and Android patch a full sandbox escape vulnerability.

on pcworld.com

Adobe patches critical vulnerabilities in Flash Player, ColdFusion

Vulnerabilities in Adobe's software could have allowed unauthorized remote code execution or remote read access.

Facebook forces some users to reset passwords because of Adobe data breach

Facebook locked some users out of their accounts after determining that their log-in credentials were exposed as a result of a security breach at Adobe.

on techhive.com

Flash Player now sandboxed under Safari on Mac OS X

The Flash Player plug-in has more restrictions, which should mean improved security under Safari on Mac OS X Mavericks.

D-Link to padlock router backdoor by Halloween

A security issue in some of D-Link routers could allow attackers to change the device settings without requiring a username and password. D-Link says it will address the problem with a firmware update by the end of the month.

on pcworld.com

security

Flash Player, Reader and Shockwave Player get critical security updates

The new updates to Adobe's Flash Player, Reader and Shockwave Player address vulnerabilities that could allow attackers to compromise computers.

Touch ID

Researchers: Fingerprint sensor in iPhone 5S is no silver bullet

The fingerprint sensor in Apple's new iPhone 5S has the potential to enhance the security of the device, but the devil will be in the details.