Maybe we need to set OKCupid up on a date with a security expert.
If you’re a bug hunter for companies such as Google and Facebook, the last few weeks have been good to you. Google announced today that it has officially given out over $2 million to people who poke holes in its systems on purpose.
Google will force a company’s hand if it finds critical vulnerabilities in their systems by publishing the bugs publicly within seven days.
Java is getting a security update today to fix a number of bugs that can be used in drive-by attacks.
A Google developer discovered a number of attacks that could be aimed at Apple App Store, all fixable if Apple turned on HTTPS for all network activity regarding the marketplace. Apple finally took that action today.
Google, Microsoft, and Mozilla all patched up their browsers before the Pwn2own competition in Vancouver today, but the “hackers” still got in and in some cases were able to grab hold of the whole operating system as a result.
Facebook was hacked last month, though it promises no user data was compromised.
A dangerous hole in Adobe’s Reader and Acrobat programs may let hackers completely take over your machine. The company confirmed that attacks are currently happening “in the wild” and that it is working on a fix.
The U.S. Department of Homeland Security believes you shouldn’t be using Java until an update has been issued to fix a dangerous hole.
A hack discovered in November could let anyone with access to your phone systems hijack the phone to listen in on your calls and conversations in the vicinity.
Heroku was alerted to a security vulnerability that let anyone change an account’s password and take over the account. The company reacted quickly, pushing out a fix the next day.
Oracle patched the hole in Java 7 that allows hackers to secretly download malware to your computer today, in an uncharacteristic update to its software. But it seems the company knew about the issue far longer than the rest of us.
When Mozilla launched Firefox 5 yesterday, there were no mentions of security updates for Firefox 4. And for good reason: Mozilla is treating Firefox 5 as 4′s final security update.