TikTok’s Security Threat Comes Into Focus
[ad_1] As Russia’s war in Ukraine drags on, Ukrainian forces have proved resilient and mounted increasingly intense counterattacks on Kremlin forces. But as the conflict evolves, it is entering an…
How Vice Society Got Away With a Global Ransomware Spree
[ad_1] Throughout 2021, Vice Society’s health care targets included Barlow Respiratory Hospital in California, Eskenazi Health in Indiana, Centre Hospitalier D’Arles in France, United Health Centers in California, and a…
How the World Will Know If Russia Is Preparing to Launch a Nuclear Attack
[ad_1] This week, NATO is conducting its regular, long-planned nuclear strike exercise known as “Steadfast Noon” to practice deploying fighter jets used to carry nuclear weapons. And Russia is expected…
Google’s Pixel 7 and Pixel 7 Pro Pack New Android VPN and Tensor G2, Titan M2 Chips
[ad_1] When Google launched its flagship Pixel 6 and 6 Pro smartphones last year, the company touted its Tensor “system on a chip” and dedicated Titan M2 security chip as…
The Uber Data Breach Conviction Shows Security Execs What Not to Do
[ad_1] “This is a unique case because there was that ongoing FTC investigation,” says Shawn Tuma, a partner in the law firm Spencer Fane who specializes in cybersecurity and data…
Meta Says It Has Busted More Than 400 Login-Stealing Apps This Year
[ad_1] Both Apple and Google have struggled for years to keep malicious apps out of their official mobile app stores and away from users’ phones. Simple programs like flashlight apps,…
The Challenge of Cracking Iran’s Internet Blockade
[ad_1] Some communication services have systems in place for attempting to skirt digital blockades. The secure messaging app Signal, for example, offers tools so people around the world can set…
Cloudflare Takes a Stab at a Captcha That Doesn’t Suck
[ad_1] There’s a uniquely bitter rage that comes from being asked to click every box that contains a parking meter only to then be told that you missed one because…
The Dire Warnings in the Lapsus$ Hacker Joyride
[ad_1] “At the end of the day, the flexibility of how you can abuse corporate accounts to move laterally and pivot over to other applications in the cloud—there are just…
A New Linux Tool Aims to Guard Against Supply Chain Attacks
[ad_1] In the wake of alarming incidents like Russia’s massive 2017 NotPetya malware attack and the Kremlin’s 2020 SolarWinds cyberespionage campaign—both pulled off by poisoning wells for software distribution—organizations around…
The Uber Hack’s Devastation Is Just Starting to Reveal Itself
[ad_1] On Thursday evening, ride-share giant Uber confirmed that it was responding to “a cybersecurity incident” and was contacting law enforcement about the breach. An entity that claims to be…
It’s Time to Get Real About TikTok’s Risks
[ad_1] Still, it is unclear whether TikTok poses a unique and specific threat to US national security or if it is simply a convenient proxy through which lawmakers are grappling…
Police Across US Bypass Warrants With Mass Location-Tracking Tool
[ad_1] As summer winds down, researchers warned this week about systemic vulnerabilities in mobile app infrastructure, as well as a new iOS security flaw and one in TikTok. And new…
Careless Errors in Hundreds of Apps Could Expose Troves of Data
[ad_1] As with any piece of software, mobile apps can create an array of security issues and exposures, from rogue programs that are intentionally malicious to apps that contain an…
Why the Twilio Breach Cuts So Deep
[ad_1] The communication company Twilio suffered a breach at the beginning of August that it says impacted 163 of its customer organizations. Out of Twilio’s 270,000 clients, 0.06 percent might…
The Most Damning Allegation in the Twitter Whistleblower’s Report
[ad_1] Zakto further alleges that Twitter has no comprehensive development or testing environments for piloting new features and system upgrades before launching them in the live production software. As a…
Playing Janet Jackson’s ‘Rhythm Nation’ Can Crash Old Hard Drives
[ad_1] A new jailbreak for John Deere tractors, demonstrated at the Defcon security conference in Las Vegas last Saturday, put a spotlight on the strength of the right-to-repair movement as…
Spyware Hunters Are Expanding Their Toolset
[ad_1] The surveillance-for-hire industry’s powerful mobile spyware tools have gotten increasing attention lately as tech companies and governments grapple with the scale of the threat. But spyware that targets laptops…
A New Jailbreak for John Deere Tractors Rides the Right-to-Repair Wave
[ad_1] farmers around the world have turned to tractor hacking so they can bypass the digital locks manufacturers impose on their vehicles. Like insulin pump “looping” and iPhone jailbreaking, this…
A Flaw in the VA’s VistA Medical Records Platform May Put Patients at Risk
[ad_1] Though the United States Department of Veterans Affairs runs some interesting technology programs, it’s not known for being a flexible and nimble organization. And when it comes to electronic…
Zoom’s Auto-Update Feature Came With Hidden Risks on Mac
[ad_1] Many of us have been there: You fire up the Zoom app as you rush to join a meeting you’re already late for, and you’re hit with a prompt…
Meta Just Happens to Expand Messenger’s End-to-End Encryption
[ad_1] A Nebraska woman and her 17-year-old daughter are facing felony and misdemeanor charges related to allegedly performing an abortion after 20 weeks, which has long been illegal in the…
Sloppy Software Patches Are a ‘Disturbing Trend’
[ad_1] The whole purpose of vulnerability disclosure is to notify software developers about flaws in their code so they can create fixes, or patches, and improve the security of their…
OFRAK, an Open Source IoT Reverse Engineering Tool, Is Finally Here
[ad_1] At the 2012 DefCon security conference in Las Vegas, Ang Cui, an embedded device security researcher, previewed a tool for analyzing firmware, the foundational software that underpins any computer…
Google’s Android Red Team Had a Full Pixel 6 Pwn Before Launch
[ad_1] When Google launched the Pixel 6 and 6 Pro in October 2021, key features included its custom Tensor system-on-a-chip processor and the security benefits of its onboard Titan M2…