Permalink

Leaked Equifax documents provided to US Senate reveal that they dumped all our drivers' licenses, too, but Equifax says it's OK, so…

A leaked set of disclosures made by Equifax to the US Senate have revealed that the breach of 145.5 million Americans’ sensitive financial data was even worse than suspected to date: in addition to data like full legal names, dates … Continue reading

Permalink

30+ White House officials & Trump appointees never got security clearance — like Jared Kushner, Rob Porter

Some 30 to 40 White House officials and Trump administration political appointees are operating more than a year into the Trump regime without full security clearances. One of them is Jared Kushner. Until recently, another was noted wife-basher Rob Porter. … Continue reading

Permalink

Your smart TV is trivial to hack and leaks your personal information like crazy unless you disable all its useful features

Consumer Reports dragged a bunch of its top-rated smart TVs back into its labs to re-evaluate them, this time checking them for hard-to-evaluate information security risks and defects, which are not normally factored into its ratings. (more…)

Permalink

Modechai Guri: the guy who gets data out of airgapped computers

Computers that are isolated from the internet and local networks are said to be “airgapped,” and it’s considered a best practice for securing extremely sensitive systems. (more…)

Permalink

British court rules that the inhumane conditions in American prisons mean UK hacking suspect can't be legally extradited

Lauri Love is a British man on the autism spectrum who also has depression and severe eczema, who was facing extradition to America on charges of hacking US military and private agencies. (more…)

Permalink

The Internet of Connected Sex Toys is every bit as horrifyingly insecure and poorly thought out as you imagine

The rush to put networked sensors and controllers into sex toys is grounded in foolish, convenient untruths, like the idea that the incredibly sensitive data generated by these systems can be anonymized and then analyzed for insights without exposing users … Continue reading

Permalink

The latest IoT botnet displays evidence of a halfway clever botmaster

The amazing and frightening thing about the Mirai botnet‘s reign of terror wasn’t that it was a super-sophisticated cyberweapon: rather, it was a clumsy, amateurish fuggly hack that turned out to have been produced by a couple of dum-dums with … Continue reading

Permalink

OK, panic again: patching Spectre and Meltdown has been a disaster

When the news of two showstopping bugs in virtually every computer in use today broke, it was scary stuff — experts predicted that mitigating these bugs would be difficult and impose severe performance penalties on patched systems; a week later, … Continue reading

Permalink

NHS okays hospitals and doctors storing patient data on public cloud servers

NHS Digital has issued guidance to the independent authorities and businesses that make up the UK’s National Health Service, setting out the case for storing extremely sensitive patient data on public cloud servers. (more…)

Permalink

A newly discovered strain of Android malware contains never-seen surveillance features

A new research report from Kaspersky Labs details their analysis of Skygofree, a newly discovered strain of malware that offers some of the most comprehensive and invasive surveillance tools ever seen for Android. (more…)