Casino companies may not be the only ones keeping track of how many points you have on your player card. The cards represent a growing number of fraud cases in Las Vegas, as hackers target the popular programs and casinos’ customer databases in an effort to gain access to customers’ personal information or steal points, [...]

As part of its January patch update, Oracle has released security updates for a number of products. The Critical Patch Update addresses vulnerabilities in, for example, the company’s database server, Application Server, WebLogic Server, PeopleSoft Enterprise and Open Office. Oracle gives vulnerabilities in Solaris, Fusion Middleware and Audit Vault a Common Vulnerability Scoring System (CVSS) [...]

The ability of the Stuxnet worm to damage Iran’s nuclear complex demonstrated, in a very public way, the capabilities of cyber weapons. That was not lost on the program team of the Black Hat conference, or its founder, Jeff Moss. Moss, a security consultant who was appointed in 2009 to serve on the U.S. Dept. [...]

The University of Sydney has called in two internet security firms to beef up protection of its computer networks after its home page was sabotaged and corporate webpages were altered during the weekend. The home page was replaced on Saturday with an offensive message that taunted the site’s administrator for lax security. The website was [...]

U.S. investigators will be holding a press conference this afternoon to announce criminal charges related to the alleged theft of email addresses and other personal information from 120,000 iPad users. The theft occurred back in June of this year, when hackers compromised ATT’s servers with an automated script. At the time, a group calling itself [...]

Hackers and cheats are taking full advantage of the freshly cracked PlayStation 3, with Modern Warfare 2 players bearing the brunt of the assault — and Infinity Ward says there is nothing it can do about it. Creative Strategist Robert Bowling (fancy new title ya got there, Bob!) stated in a post on the Infinity [...]

Scammers are trying to steal banking information using fake e-mails that look like they’ve come from the U.S. Federal Deposit Insurance Corporation, the FDIC warned Wednesday. The phishing e-mails tell the victim his account has been suspended “due to account activity that violates the Patriot Act,” and instructs him to use a system called IDVerify [...]

Another major new capability in Joomla 1.6 is the Access Control Level system for managing rights and permissions within the system. This isn’t exactly a revolutionary improvement, as many CMS products, especially on the commercial side, have long had very capable access control systems built-in. But the previous permission system in Joomla was basically unsuitable [...]

The Wireshark development team has released version 1.2.14 and 1.4.3 of its open source, cross-platform network protocol analyser. According to the developers, the security updates address a high-risk vulnerability (CVE-2010-4538) that could allow a remote attacker to initiate a denial of service (DoS) attack or possibly execute arbitrary code on a victim’s system. Affecting both [...]

Adobe has finally made moves to improve ‘cookie’ management and privacy in its much maligned Flash Player. The area of focus is the local storage feature in Flash Player, which stores what are often mistakenly referred to as ‘Flash cookies’, said Emmy Huang, group product manager for Flash at Adobe, in a blog post. Local [...]