What is Shellshock? It is a vulnerability or bug in a piece of software called Bash (Bourne Again Shell) which has been discovered this week. The bug has the potential to affect millions of computers and has been nicknamed Shellshock. How serious is it? The United States National Vulnerability Database have rated the bug as […]

What A flaw in eBays security settings has allowed criminals to use Cross Site Scripting (XSS) to list items on the popular auction site which redirect users to phishing pages designed to steal usernames and passwords or potentially deliver viruses and malware to users computers. The issue was originally identified in February, but hit the […]

“In the aftermath of Heartbleed, users of web services have been widely exhorted to change all their passwords, and reminded that they should be changing them regularly. Such advice is passed around as an accepted, near-axiomatic best practice, but is it? Should you actually be changing your passwords regularly? Or ever?” Source:  The article quoted […]

The University Information Security Framework programme is in the process of establishing the most cost effective means by which to deliver enterprise encryption in order to secure University laptops used to handle confidential information. The ultimate aim being to deliver a centralised service for those who need to encrypt a University laptop (whether the whole disk […]

As per the article linked here eBay have owned up to a breach of their systems which, if you use the service, may have resulted in your password being ‘liberated’ by the crooks. You can read eBays blog statement here and their FAQ on what has happened here The breach appears to have taken place several […]