Web Security


Behind Facebook ‘Breach’: New Apps, Old Infrastructure

A report of a massive ‘privacy breach’ at Facebook reveals, instead, the rickety underpinnings of the modern Internet straining at the demands of new applications. 

When the Wall Street Journal broke a story on Monday about a “Privacy Breach” at Facebook, all the elements were in place for a tech-driven earthquake: the world’s largest social network, the privacy of what the Journal described as ‘tens of millions’ of users of Facebook applications (or ‘apps’) including mega hits like Zynga’s Farmville.

Adobe Reader X With Protected Mode Due in November

Adobe will finally release the new version of its Reader software–which will include the much-anticipated Protected Mode security feature–next month. Adobe Reader X will include a number of other new features in addition to the sandbox feature.


It’s been a blissful few months since Conficker last reared its over-hyped head, but now there’s a new piece of malware that is adopting some of the tactics that Conficker used. The malware, known as Murofet, is using Conficker’s technique of generating thousands of new domains for updates every day, but doing it in a somewhat novel way.

It’s been tried before, but NSS Labs founder Rick Moy says his company’s new Exploit Hub – a store front for exploit code – can work. In an interview with Threatpost.com, he explains why the current market for exploits doesn’t work for the good guys, and why zero day exploits don’t help anyone. 

Black Hat SEO

This Google TechTalk features Julien Sobrier of Zscaler discussing the tactics and techniques that spam gangs use in constructing their black hat SEO campaigns.

The U.S. has by far the highest number of bot-infected computers of any country in the world, with nearly four times as many infected PCs as the country in second place, Brazil, according to a new report by Microsoft. The quarterly report on malicious software and Internet attacks shows that while some of the major botnets have been curtailed in recent months, the networks of infected PCs still represent a huge threat.

The European agency responsible for protecting the critical infrastructure of EU countries is warning its member states that the Stuxnet attack represents a major change in the malware landscape and that they should be prepared for further attacks with the same level of sophistication and professionalism.

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.