Zack Whittaker

Zack Whittaker is the security editor for ZDNet, covering cyber and national security. He is based in New York newsroom, and is also found on sister-sites CNET and CBS News. You can reach him with his PGP key: EB6CEEA5.

Charlie Osborne

Charlie Osborne, a medical anthropologist who studied at the University of Kent, UK, is a journalist, freelance photographer and former teacher. She has spent years travelling and working across Europe and the Middle East as a teacher, and has been involved in the running of businesses ranging from media and events to B2B sales. Charlie currently works as a journalist and photographer -- with the occasional design piece -- and writes for ZDNet, CNET and SmartPlanet. She has particular interests in social media, IP law, social engineering and security.

Latest Posts

US-CERT: Beware of airline ticket e-mail scam

US-CERT: Beware of airline ticket e-mail scam

The United States Computer Emergency Readiness Team (US-CERT) has issued an alert for an e-mail scam targeting holiday travelers, warning that malware authors are using clever social engineering tactics to hijack Windows computers.In the e-mail scam, users get a .

December 12, 2008 by in Security

IE7 XML parsing zero day exploited in the wild

IE7 XML parsing zero day exploited in the wild

A couple of hours ago, two working proof of concept exploits for MS Internet Explorer XML Parsing Remote Buffer Overflow were posted at Milw0rm, with international hacking communities quickly catching up and starting to use it. The second PoC also works on Vista, in particular both exploits were tested on Vista SP1, Explorer 7.

December 10, 2008 by in Security

Gmail, Yahoo and Hotmail systematically abused by spammers

Gmail, Yahoo and Hotmail systematically abused by spammers

With the industry's eyes constantly monitoring the usual suspects' use of phony hosting providers, another market segment within the underground marketplace has been developing beneath the radar, aiming to build a malicious infrastructure (Spammers targeting Bebo, generate thousands of bogus accounts; Malware and spam attacks exploiting Picasa and ImageShack) through efficient CAPTCHA recognition.

December 10, 2008 by in Security

Vint Cerf's Twitter account hacked, suspended for spam

Vint Cerf's Twitter account hacked, suspended for spam

(UPDATE: Cerf denies that this was his Twitter profile) It appears that Vint Cerf, the father of Internet who needs no introduction, has had his Twitter account compromised, with a multitude of spam messages posted on his behalf during the last 24 hours, all of which are redirecting to auction search sites (baysearch .net and soldly .

December 9, 2008 by in Security

Hackers exploiting (unpatched) IE 7 flaw to launch drive-by attacks

Hackers exploiting (unpatched) IE 7 flaw to launch drive-by attacks

Malicious hackers are exploiting a zero-day flaw in Microsoft's Internet Explorer browser to launch a new wave of drive-by downloads, according to a warning from security researchers.The Web attacks, first reported by Bob McMillan, takes aim at users running IE 7 on Windows XP SP2 and includes the use of a Trojan downloader that commandeers Windows machines for nefarious purposes.

December 9, 2008 by in Enterprise Software

With or without McColo, spam volume increasing again

With or without McColo, spam volume increasing again

It was only a matter of time for spam volume to sky rocket again, despite McColo's shutdown in November. Two weeks after the cybercrime-friendly ISP got disconnected from the Internet, spam volumes are increasing once again with the main botnets using it as a command and control location regaining their strength by migrating to new hosting locations.

December 8, 2008 by in Security

Coming on Patch Tuesday: 8 bulletins, 6 critical

Coming on Patch Tuesday: 8 bulletins, 6 critical

The final Microsoft Patch Tuesday for 2008 will be a big one: 8 bulletins covering serious code execution flaws in a wide range of ubiquitous software.According to the company's advance notice mechanism,  six of the eight bulletins will be rated "critical," Microsoft's highest severity rating.

December 4, 2008 by in Windows

Newsletters

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
See All
See All

Top Stories