Lucian ConstantinRomania Correspondent, IDG News Service

Lucian Constantin writes about information security, privacy, and data protection for the IDG News Service.

simplisafe home security system

Popular home security system SimpliSafe can be easily disabled by burglars

Attackers can easily disable SimpliSafe home security systems from up to 30 meters away by using a device that costs around $250 to create, researchers from security firm IOActive found.

Apple iPhone 5S (1)

Increasingly popular "hot patching" update tool for iOS apps puts users at risk

An increasing number of iOS application developers use a technique that allows them to remotely modify the code in their apps without going through the official app store's review process, an action that poses security risks for users.

Java logo browser

Oracle's killing a favorite security hole for attackers: the Java browser plug-in

Next year, the Java browser plug-in, which is frequently the target of Web-based exploits, will be retired by Oracle.

osxyosemite

Google-owned VirusTotal starts analyzing Mac malware in a sandbox

VirusTotal, the most widely used online file scanning service, is now executing suspicious Mac apps submitted by users inside a sandbox to generate information that could improve the analysis and detection of Mac malware.

my passport

Western Digital encrypted external hard drives have flaws that can expose data

The hardware-based encryption built into popular Western Digital external hard disk drives has flaws that could allow attackers to recover data without knowing the user password.

Emergency Flash Player patch fixes critical flaw being exploited in the wild

Adobe released a patch for a critical vulnerability in Flash Player in response to high-profile cyberespionage attacks against governmental targets.

Apple iPhone 5S (1)

Thousands of iOS apps infected by XcodeGhost

Security researchers have identified over 4,000 iOS apps that have malicious code added by a rogue version of the Xcode development tool.

iOS 9 on iPhone 6

$1 million bounty dangled for Apple iOS 9 jailbreak exploits

Zerodium, an exploit acquisition company, promises to pay $1 million to researchers who provide it with an exclusive, browser-based and untethered jailbreak for the latest Apple iOS 9 operating system.

iphone6

Vulnerability in enterprise-managed iOS devices puts business data at risk

A vulnerability in the iOS sandbox for third party applications, like those installed by companies on their employees' devices, can expose sensitive configuration settings and credentials.

computer security stock image

OpenSSL fixes severe flaw that could enable man-in-the-middle attacks

The vulnerability allows attackers to generate rogue certificates that pass OpenSSL's validation

adobe flash logo

Adobe patches zero-day Flash Player flaw used in targeted attacks

The vulnerability has been exploited by a China-based cyberespionage group for several weeks, security firm FireEye says.

iPhone 6 and 6 Plus have raised cameras.

Fraud campaign installs rogue app on non-jailbroken iPhones

The attackers are likely abusing Apple's iOS Developer Enterprise Program, researchers said

apple watch on wrist 2

First software update for Apple Watch includes critical security fixes

The update patches 13 vulnerabilities and updates the trusted root SSL certificates.

ios8safari primary

URL-spoofing bug in Apple's Safari could enable hard to detect phishing attacks

A researcher developed code that can trick Safari into showing a different URL in its address bar than the one currently loaded.

mackeeper icon

Controversial MacKeeper security program opens critical hole on Mac computers

The program's developers are urging users to update to its latest version as soon as possible