Zack Whittaker

Zack Whittaker is the security editor for ZDNet, covering cyber and national security. He is based in New York newsroom, and is also found on sister-sites CNET and CBS News. You can reach him with his PGP key: EB6CEEA5.

Charlie Osborne

Charlie Osborne is a cybersecurity journalist and photographer who writes for ZDNet and CNET from London. PGP Key: AF40821B | Research/security tips email: cingred@protonmail.com.

Jennifer Leggio

Jennifer Leggio has been in the security industry for 17 years as a marketer, advisor, and writer. Her focus is on security culture, including disclosure, community issues, equality in security, disruptive trends, and even marketing best practices. PGP Key: 3A708289 | She prefers other contact on Twitter via @mediaphyter.

Latest Posts

Mozilla slaps band-aid on 11 Firefox flaws

Mozilla slaps band-aid on 11 Firefox flaws

Mozilla has joined this week's patchapalooza with the release of a Firefox update to fix 11 documented security vulnerabilities.Six of the 11 issues are in advisories rated "critical" because of the risk of code execution attacks that could allow hackers to take complete control of a compromised machine.

June 11, 2009 by in Enterprise Software

Mac OS X malware posing as fake video codec discovered

Mac OS X malware posing as fake video codec discovered

Researchers from ParetoLogic are reporting on a newly discovered Mac OS X malware variant posing as fake video ActiveX object found at a bogus Macintosh PortTube site.The use of fake video codecs is a social engineering tactic exclusively used by malware targeting Windows, and seeing it used in a Mac OS X based malware attack proves that successful social engineering approaches remain OS independent.

June 10, 2009 by in Apple

Overall spam volume unaffected by 3FN/Pricewert's ISP shutdown

Overall spam volume unaffected by 3FN/Pricewert's ISP shutdown

Following last week's shutdown of 3FN/Pricewert's operations by the FTC, wishful thinkers expected a major decline in the overall spam volume, with botnet masters once again caught off guard just like it happened in November, 2008 with McColo's shutdown.However, according to numerous vendors that doesn't seem to be the case.

June 10, 2009 by in Security

Microsoft patches 31 Windows, IE, Office security holes

Microsoft patches 31 Windows, IE, Office security holes

Microsoft's batch of patches this month is a big one: 10 bulletins covering a total of 31 documented vulnerabilities affecting the Windows OS, the Internet Explorer browser and the Microsoft Office productivity suite (Word, Works and Excel).Five of the 10 bulletins are rated "critical," Microsoft's highest severity rating.

June 9, 2009 by in Windows

Microsoft study debunks profitability of the underground economy

Microsoft study debunks profitability of the underground economy

Cybercrime, what cybercrime and millions of dollars in profits?!A newly released paper presented by Cormac Herley and Dinei Florencio at this year's  Workshop on the Economics of Information Security 2009 entitled "Nobody Sells Gold for the Price of Silver: Dishonesty, Uncertainty and the Underground Economy" debunks the often taken for granted profitability of the underground economy comparing it to that of a Market for Lemons, where the seller knows more about the product than the buyer.

June 5, 2009 by in Security

Adobe piggybacks on Microsoft Patch Tuesday

Adobe piggybacks on Microsoft Patch Tuesday

Adobe's first ever quarterly patch for the Reader and Acrobat product lines is set for June 9, the same day Microsoft is scheduled to deliver its batch of security updates.As previously announced, Adobe plans to deliver security updates for Adobe Reader and Acrobat versions 7.

June 5, 2009 by in Security

StrongWebmail CEO's mail account hacked via XSS

StrongWebmail CEO's mail account hacked via XSS

A Webmail service that touts itself as hack-proof and offered $10,000 to anyone who could break into the CEO's e-mail has lost the challenge.A trio of hackers successfully compromised the e-mail using persistent cross-site scripting (XSS) vulnerability and are now claiming the bounty.

June 4, 2009 by in CXO

Newsletters

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
See All
See All

Top Stories