Security & Privacy

Yet another company has fallen victim to a hack, with attackers breaking into systems at Evernote, maker of a Web-based note-taking application used by about 50 million people.

The company said in a security notice that some user data had been accessed and that Evernote was requiring all users to reset their passwords. Apparently, though, no sensitive financial information was stolen, and no user content was affected:

"In our security investigation, we have found no evidence that any of the content you store in Evernote was accessed, changed or lost," the company said in the statement, which was … Read more

Java cannot seem to get a break. Only a few days after patching the last zero-day vulnerability, two more exploits are being found that make use of the runtime. One, as noted by Kaspersky, is a recent exploit of the latest runtime's attempts to install a McRAT executable by overwriting memory in the JVM that will trigger the executable to run.

Once installed, the McRAT malware will attempt to contact command and control servers and copy itself into dll files in Windows systems.

This malware is specifically Windows-based; however, a second one outlined by Intego, is a Minecraft password-stealing … Read more

SAN FRANCISCO--Of all the multitudes of phones launching amid the grandeur of Barcelona this week, Motorola Solutions quietly broke champagne over one device from the back corner of a convention center here.

The Motorola AME 2000, originally announced a few weeks back, is not a phone for the average consumer. That makes sense, given that its public bow was at the RSA Conference 2013 this week, an annual confab of security nerds, experts, researchers, enterprise security vendors, and government representatives.

Motorola Solutions focuses on government and enterprise devices, and remains independent from the Google-owned Motorola Mobility. Its booth at RSA … Read more

For years, the U.S. intelligence community has warned that cyber attacks from China and other countries are the biggest threat to our national security. Now, some are wondering whether the death of an engineer from California could be linked to cyber espionage.

In 2010, 29-year-old Shane Todd moved to Singapore for an engineering job with a government research firm called the Institute of Micro Electronics or IME.

"He was a young man that wanted an adventure and thought it would be super-cool to live in a foreign country and he really liked it when he first got there,&… Read more

How Google and other American Internet companies operate in Europe could come down to a link that, depending on what side of the Atlantic Ocean you're on, should or should not be deleted.

A case heard Tuesday before the European Court of Justice (ECJ) hinges on a complaint submitted by a Spanish citizen who searched Google for his name and found a news article from several years earlier, saying his property would be auctioned because of failed payments to his social security contributions.

Spanish authorities argued that Google, other search engines, and other Web companies operating in Spain should … Read more

The U.S. is one step closer to bringing Kim Dotcom to its shores.

The New Zealand Court of Appeal today ruled that the U.S. government will not be required to turn over all of their evidence against Kim Dotcom in order to obtain his extradition to the States. A summary of its case, the judges ruled, will do just fine.

The Wall Street Journal was first to report on the ruling.

Dotcom had been hoping to force the U.S. government to present all of its evidence against him before it could move forward with hopes to extradite him from New Zealand. … Read more

It looks like Dropbox may be grappling with some leftover issues from hackers' access into the system last July.

Over the past 24 hours, users have been posting on the file-sharing site's forum, saying that they're being hit with spam e-mails sent to e-mail accounts used only for Dropbox.

"My Dropbox specific email has been receiving spam since the 20th of February," Daniel B. wrote today. Richard F. wrote, "I have an internal to my company email address that I used for Dropbox only and I am getting the same fake paypal scam emails. This … Read more

In its latest salvo against the financial industry, Anonymous claims to have leaked sensitive information related to Bank of America executives and the company's alleged effort to "spy and collect information on private citizens."

Par:AnoIA, a group that identifies itself as the Anonymous Intelligence Agency, said in a press release (PDF) yesterday that it had released 14 gigabytes of data on hundreds of thousands of executives at companies around the world, including Bloomberg, Thomson Reuters, and TEKSystems, which the hackvisit collective claims was hired last year to spy on hackers and social activists.

The group says … Read more

China has accused the U.S. for most of the cyberattacks launched against its military networks.

In a statement released today, China's Ministry of National Defense said that cyberattacks against its military sites have increased over the past few years. Based on checks of IP addresses, the Defense Ministry claimed an average of 144,000 cyberattacks per month last year, according to Reuters.

And it fingered the U.S. for almost 63 percent of them.

The allegations from Beijing come hot on the heels of a recent report from U.S. security firm Mandiant, linking the Chinese army to cyberattacks … Read more