Windows 8 is still off on the horizon somewhere, but the new version of Internet Explorer that’s coming with it–IE 10–already is in consumer preview and it includes some major changes to the exploit mitigations. In addition to the existing implementations of ASLR, DEP and others technologies in Windows and IE, Microsoft has included a couple of new ones designed to further inhibit memory attacks.

Fans of the immensely popular FC Barca football club may have been duped into giving away their Facebook log-on credentials, according to a post on Symantec’s Security Response blog.

Attackers are using a some new schemes that combine old phishing tactics with some newer techniques in order to steal or disable the SIM cards in victims’ mobile phones and then take them over for use in bank fraud transactions.

Researchers at Symantec have identified a spike in Twitter messages carrying links to malicious programs for Android mobile devices in recent weeks, according to a post on Symantec’s Security Response blog on Monday.

If you want to get that slick job you’ve been gunning for, you might have to suffer a bit of snooping.  According to recent news reports, employers are increasingly asking applicants for jobs to submit their user credentials or asking to watch while applicants peruse their own social media account. 

A fake Facebook profile for NATO Senior Commander James Stavridis, a US Navy Admiral, was used to trick senior officers in both the U.S. and British military to becoming friends.

VANCOUVER–If there’s one thing that emerged from all of the craziness that was CanSecWest, Pwn2Own and Pwnium, it’s that life is becoming more difficult for researchers and attackers looking to exploit modern browsers. It’s not impossible, of course, but it’s certainly not the warm-up exercise that it was four or five years ago.