Monday, October 19, 2015
China hack attacks on US continue despite commercial spying pact If this surprises you, I’ve got a real-life, fully functional totally Back to the Future hoverboard to sell you…Wednesday, October 14, 2015
Hackers Can Silently Control Siri From 16 Feet Away Well this is concerning: A pair of researchers at ANSSI, a French government agency devoted to information security, have shown that they can use radio waves to silently trigger voice commands on any Android phone or iPhone that has Google Now or …Monday, August 3, 2015
Federal Court’s data breach decision shows new tilt toward victims, class-action lawsuits John Fontana writes at ZDNet: In an interesting twist, the Court said the fact Neiman Marcus offered free credit monitoring services was evidence that there was harm to these victims. The ruling turned …Wednesday, July 29, 2015
China-Tied Hackers That Hit U.S. Said to Breach United Airlines This is starting to look like a concerted effort to gather a specific data set for some sort of coordinated use: The previously unreported United breach raises the possibility that the hackers now have data on the movements of millions …Wednesday, December 31, 2014
Michael Riley and Jordan Robertson, reporting a fascinating story at Bloomberg: In the U.S., companies are prohibited by the 30-year-old Computer Fraud and Abuse Act from gaining unauthorized access to computers or overloading them with digital demands, even to stop an ongoing attack. The act …Wednesday, December 17, 2014
Employees sue Sony over email leaksSaba Hamedy and Meg James, at the LA Times: Hackers began releasing sensitive data after the studio’s security breach became public on Nov. 24. The group, calling itself Guardians of Peace, has released data including thousands of pages of emails from studio …Tuesday, April 8, 2014
Heartbleed: When no encryption is better than bad encryptionAlex Hern reports for The Guardian this disturbing fact about the recently disclosed OpenSSL bug, now two years old and pervasive: servers vulnerable to Heartbleed are less secure than they would be if they simply had no encryption at all. …Friday, July 19, 2013
MIT wants pre-release review of Secret Service file on Aaron SwartzKevin Poulsen, at Wired's Threat Level blog: MIT argues that those people might face threats and harassment if their names become public. But it’s worth noting that names of third parties are already redacted from documents produced …Monday, April 1, 2013
China is very serious about cyberespionageGoogle apologists like myself often answer concerns that the search-and-advertising giant can scan your email with something like “yes, but they’re doing it with robots and scrubbing it clean of all identifying information.” China, however, is not so …Thursday, January 10, 2013
US suspects Iran behind DDoS attacks on banksThese look a lot like “feeler” operations, meant to gauge the reaction attackers can expect from victim institutions and nations. The United States (read: Congress) must act immediately to ensure that we’re ready when attackers stop slowing down or …Sunday, December 9, 2012
96.36 billion cyberattacks against the US Navy each yearThe Next Web's Emil Protalinski, quoting HP's head of enterprise services Mikle Nefkens: “This means the attacks average out at about 1,833 per minute or 30 every second.” Those figures are simply astonishing. Extrapolating the other way, it …Thursday, October 18, 2012
Wireless attack could fatally turn pacemakers against patientsPatrick Gray, writing at The Register: Jack also warned of a worst-case scenario in which a worm could infect multiple devices, spreading from patient to patient, re-flashing the devices with malicious code as it foes. This code could be …