Zack Whittaker

Zack Whittaker is the security editor for ZDNet, covering cybersecurity, national security, policy and privacy. He is based out of the New York newsroom, and can also be found on sister sites CNET and CBS News. You can contact him with his PGP key: EB6CEEA5.

Charlie Osborne

Charlie Osborne, a medical anthropologist who studied at the University of Kent, UK, is a journalist, freelance photographer and former teacher. She has spent years travelling and working across Europe and the Middle East as a teacher, and has been involved in the running of businesses ranging from media and events to B2B sales. Charlie currently works as a journalist and photographer -- with the occasional design piece -- and writes for ZDNet, CNET and SmartPlanet. She has particular interests in social media, IP law, social engineering and security.

Latest Posts

Happy 4th of July

Happy 4th of July

For all of my blasting of the TSA and the US Government for our strange, inappropriate, inadequate, and sometimes unacceptable security practices, I am damn proud to be an American. There's many countries I've visited in this world, and I love many of them, but none like the good old U.

July 4, 2008 by in Enterprise Software

Storm Worm's Independence Day campaign

Storm Worm's Independence Day campaign

A Storm Worm's Independence Day campaign is circulating online using email as propagation vector, attempting to trick users into visiting a Storm Worm infected host, where a multitude of what looks like over five different exploits attempt to automatically infect the visitors next to the malware binary fireworks.exe.

July 4, 2008 by in Social Enterprise

Apple caught neglecting iPhone security

Apple caught neglecting iPhone security

If you're waiting on iPhone 2 to standardize your business on the awesome new device (yeah, I'll be on line to buy one), you might want to pay attention to the conspicuous absence of iPhone security patches over the last four months.As WaPo's Brian Krebs reports, the iPhone runs a stripped down version of Mac OS X but, even though OS X security updates are coming fast and furious, the iPhone has been neglected.

July 3, 2008 by in iPhone

Can Mozilla's security metrics project end the patch-counting nonsense?

Can Mozilla's security metrics project end the patch-counting nonsense?

In partnership with indie security consultant Rich Mogull (left) Mozilla has launched a valuable Security Metrics Project that could help to -- we can only hope -- put an end to the silly notion that patch-counting helps to determine a product's security posture.The idea is to develop a metrics model that goes beyond simple bug counts to accurately reflect the effectiveness of secure development efforts and the relative risk to users over time.

July 3, 2008 by in Security

Getaway day: How to secure your laptop for holiday travel

Getaway day: How to secure your laptop for holiday travel

It's getaway day and as we prepare to hit the road, trudge through airport security and snag that car rental, spare a thought for the valuable data that travels with you on that trusty old laptop.According to a recent study by the Ponemon Institute, more than 637,000 notebooks vanish each year in mid-to-large airports.

July 3, 2008 by in Laptops

NoScript vs. Internet Explorer 8 Filters

NoScript vs. Internet Explorer 8 Filters

NoScript plugin writer Giorgio Maone posted a commentary on IE 8's new filters, drawing comparisons to his own widely popular NoScript Firefox plugin.  Maone writes:I’m happy to learn that IE8 is going to implement a less ambitious version of a feature which NoScript users have enjoyed for more than one year now.

July 2, 2008 by in Security

Gmail, Yahoo and Hotmail's CAPTCHA broken by spammers

Gmail, Yahoo and Hotmail's CAPTCHA broken by spammers

Breaking Gmail, Yahoo and Hotmail's CAPTCHAs, has been an urban legend for over two years now, with do-it-yourself CAPTCHA breaking services, and proprietary underground tools assisting spammers, phishers and malware authors into registering hundreds of thousands of bogus accounts for spamming and fraudulent purposes.

July 2, 2008 by in Google

Multiple Facebook vulnerabilities reported on Full-Disclosure

Multiple Facebook vulnerabilities reported on Full-Disclosure

Jouko Pynnonen posted a message to the Full-Disclosure mailing list today, citing multiple "script injection" vulnerabilities within Facebook.  I'm not sure if this is a surprise to anybody out there, it's certainly not to me, as numerous web applications have major problems with Cross-site Scripting vulnerabilities, but I think this is important to note due to the widespread use of Facebook.

July 2, 2008 by in Open Source

Antivirus vendor introducing virtual keyboard for secure Ebanking

Antivirus vendor introducing virtual keyboard for secure Ebanking

Kaspersky's most recent product launch of the Kaspersky Internet Security 2009, is featuring a virtual keyboard "a secure pop-up that enables logins, passwords, bank card details and other important personal information to be entered safely to prevent the theft of confidential information" aiming to protect users from keyloggers, and consequently provide a safer Ebanking experience.

July 2, 2008 by in Banking

Newsletters

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
Subscription failed.
See All
See All

Top Stories