Zack Whittaker

Zack Whittaker is the security editor for ZDNet, covering cyber and national security. He is based in New York newsroom, and is also found on sister-sites CNET and CBS News. You can reach him with his PGP key: EB6CEEA5.

Charlie Osborne

Charlie Osborne, a medical anthropologist who studied at the University of Kent, UK, is a journalist, freelance photographer and former teacher. She has spent years travelling and working across Europe and the Middle East as a teacher, and has been involved in the running of businesses ranging from media and events to B2B sales. Charlie currently works as a journalist and photographer -- with the occasional design piece -- and writes for ZDNet, CNET and SmartPlanet. She has particular interests in social media, IP law, social engineering and security.

Latest Posts

Microsoft patches 31 Windows, IE, Office security holes

Microsoft patches 31 Windows, IE, Office security holes

Microsoft's batch of patches this month is a big one: 10 bulletins covering a total of 31 documented vulnerabilities affecting the Windows OS, the Internet Explorer browser and the Microsoft Office productivity suite (Word, Works and Excel).Five of the 10 bulletins are rated "critical," Microsoft's highest severity rating.

June 9, 2009 by in Windows

Microsoft study debunks profitability of the underground economy

Microsoft study debunks profitability of the underground economy

Cybercrime, what cybercrime and millions of dollars in profits?!A newly released paper presented by Cormac Herley and Dinei Florencio at this year's  Workshop on the Economics of Information Security 2009 entitled "Nobody Sells Gold for the Price of Silver: Dishonesty, Uncertainty and the Underground Economy" debunks the often taken for granted profitability of the underground economy comparing it to that of a Market for Lemons, where the seller knows more about the product than the buyer.

June 5, 2009 by in Security

Adobe piggybacks on Microsoft Patch Tuesday

Adobe piggybacks on Microsoft Patch Tuesday

Adobe's first ever quarterly patch for the Reader and Acrobat product lines is set for June 9, the same day Microsoft is scheduled to deliver its batch of security updates.As previously announced, Adobe plans to deliver security updates for Adobe Reader and Acrobat versions 7.

June 5, 2009 by in Security

StrongWebmail CEO's mail account hacked via XSS

StrongWebmail CEO's mail account hacked via XSS

A Webmail service that touts itself as hack-proof and offered $10,000 to anyone who could break into the CEO's e-mail has lost the challenge.A trio of hackers successfully compromised the e-mail using persistent cross-site scripting (XSS) vulnerability and are now claiming the bounty.

June 4, 2009 by in CXO

Typo'd Google domains in Top 10 malware exploit sites

Typo'd Google domains in Top 10 malware exploit sites

Misspelled versions of two popular Google services are among the Top 10 sites hosting exploits for use in drive-by malware download attacks.On the heels of two massive drive-by attacks -- ten of thousands of hijacked sites launching attacks via the browser -- Google released a list showing that malicious hackers are typo-squatting on its domains to evade detection and to keep malware sites alive for long periods.

June 4, 2009 by in Enterprise Software

Email service provider: 'Hack into our CEO's email, win $10k'

Email service provider: 'Hack into our CEO's email, win $10k'

A newly launched startup called StrongWebMail is aiming to add a new layer of secure authentication for its customers - phone verification prior to logging in and alert services for potential email compromises.The company is in fact so confident in its approach that it's currently offering $10,000 reward to the person who breaks into the CEO's email.

June 2, 2009 by in Collaboration

20,000 sites hit with drive-by attack code

20,000 sites hit with drive-by attack code

Hackers have broken into more than 20,000 legitimate Web sites to plant malicious code to be used in drive-by malware attacks.According to a warning from Websense Security Labs, the sites have been discovered to be injected with malicious JavaScript, obfuscated code that leads to an active exploit site.

May 31, 2009 by in Security

Newsletters

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
See All
See All

Top Stories