New Java vulnerability allows attacker to escape sandbox and execute arbitrary code on affected systems.

Russian security firm Dr.Web has identified a new Trojan named BackDoor.Wirenet.1 which runs on both Linux as well as Mac OS X. This is the first ever cross platform Trojan that has been discovered to affect both of the aforementioned operating systems.

The exploit has been successful in installing a variant of the Poison Ivy trojan. It is originating from servers in China and Oracle has not yet treleased any statement on fixing the exploit.

A look at issues of our current security infrastructure.

It’s that day of the month when you have to fire up the Windows Update and install all of those very precious security updates. Microsoft and Adobe has released a number of updates for which is available for download right now.

Users of the Bitcoinica platform are suing Bitcoinica for $460,457.70 over lost Bitcoins. This includes the price of lost Bitcoins and other damages.

Zeus trojan rebuilt to attack BlackBerry handsets. All your SMS are belong to some Swede.

What’s the best way to distribute your malicious smartphone apps? The best solution would be to create an fake android app store to sell the apps.

Dropbox users are complaining about a possible spam wave targeted at emails used to login to Dropbox.

Dark Knight Rises is definitely going to break box office records all over the world, however, even before the movie has even released, there are several torrent websites which have been filled up with fake torrents for the Dark Knight Rises.

Reports are coming in that hackers have managed to hack into a Yahoo service and steal sensitive data of more than 453000 of its customers. According to a security firm, Trustedsec, who first reported the incident, the service that was compromised was Yahoo Voice.

Social Q&A site Formspring has been hacked, and a dump of user passwords has appeared online. As a precautionary measure, Formspring is forcing every user to reset his password.

Does the name DNSChanger sound familiar? Well I’m quite sure it wasn’t to many until recently when the word went out on web, thanks to the kinda hyped initiative from ISPs and FBI. Most infected users were incognizant of the threat of getting disconnected from the internet. Before we get down to solving the problem, let’s get a formal introduction to the threat it possesses.

The final deadline for those affected by the DNSChanger to reset their DNS servers is getting nearer. But reports suggest that there are still more than 500000 computers that use the rogue servers. And, as the date reaches July 9th, all of the computers that still use the rogue settings will be cut off from the internet, as the FBI shuts down the temporary servers that were allowing them to connect to the internet until now.

The key from one device can be extracted, and can be used to intercept traffic from any other Cyberoam client. Cyberoam has not responded publicly on this matter.