February 3, 2010 - Microsoft has disclosed a vulnerability in Internet Explorer that can allow an attacker to cause local files on the system to be displayed as HTML.Technically, all versions of IE are affected, ... Read more
February 2, 2010 - It's standard operating procedure for most users to have a small number of passwords, perhaps only one, that they use on every site that requires a username and password. This is, of ... Read more
February 2, 2010 - An anonymous entry on the CryptoPath blog describes how flaws in the iPhone OS's "chain of trust" management could allow an attacker to install their own trusted root certificate in the ... Read more
January 27, 2010 - The Tools-Internet Options dialog box in Internet Explorer has a wealth of important settings in it, some which affect the system outside of Internet Explorer. This dialog box is also available as ... Read more
January 27, 2010 - Tomorrow, Thursday, January 28, 2010, is Data Privacy Day in North America and Europe. (Sorry I didn't get you a card. What's your address and social security number so I can ... Read more
January 27, 2010 - A report in Computerworld describes how an unpatched vulnerability in Internet Explorer could allow an attacker to read arbitrary files on the user's computer.Jorge Luis Alvarez Medina, a security consultant with ... Read more
January 25, 2010 - We have reported on Ben Edelman's research in the past, including the recent past. The spyware researcher and Harvard B-School professor has demonstrated that the Google Toolbar continues to track a ... Read more
January 22, 2010 - Upromise has announced that they moved immediately to address the privacy problems identified by Ben Edelman yesterday in their toolbar, TurboSaver.Only TurboSaver users who selected personalized offers were affected, although this ... Read more
January 22, 2010 - Say you're bringing your notebook through airport security in the US. Can the TSA (Transportation Security Administration) personnel copy your hard disk and/or search the data on it?No, says Blogger Bob ... Read more
January 21, 2010 - Privacy researcher and Harvard Business School Professor Ben Edelman has written a report on the practices of the Upromise Toolbar, called TurboSaver by the company.Upromise is a membership system through which ... Read more
January 15, 2010 - One of the big security stories of last month was that Facebook changed their ... Read more
January 12, 2010 - It's an eventful day. Just as they release an important new version of Acrobat, Adobe has also revealed that "...a sophisticated, coordinated attack..." was mounted "...against corporate network systems managed by ... Read more
January 11, 2010 - If you allow applications to save your passwords, anyone with physical access to your PC can decode them unless you're properly encrypting them—and chances are pretty good you're not. Let's walk through the right ... Read more
December 27, 2009 - Security services firm infySEC has a cool list of what they call the Top 10 of the most infamous unsolved computer crimes.These aren't all famous, or infamous crimes, but the unsolved ... Read more
December 22, 2009 - Thanks to reader Roberto Perez for pointing out an error in my recent entry on How the New Facebook Privacy Settings Work (since corrected).I was bothered that restrictions on ... Read more
December 22, 2009 - As we look ahead to 2010, we're hoping it's the year the web becomes a truly great platform for working and connecting online. Here are five things we'd like to see fixed for that to ... Read more
December 21, 2009 - One element of unfinished business in 2009 is the appointment of a "cybersecurity czar". Candidate Barack Obama made a big deal out of the need for such a person and specifically ... Read more
December 21, 2009 - McAfee Labs blogger David Marcus got some strange IMs in Facebook from a friend over the weekend. His friend's IMs extolled the virtues of a particular colon-cleansing product, a "funny video" that led to a Facebook phishing site, and ... Read more
December 21, 2009 - When Amit Agarwal realized that someone had successfully taken control of his Google accounts, including GMail, he got that sinking feeling that his private life and his business were compromised. But ... Read more
