Data Security

IRS hit with lawsuit over recent taxpayer data hack

IRS hit with lawsuit over recent taxpayer data hack

The massive IRS data breach has resulted in a lawsuit from affected taxpayers. The hack was announced in May, and affected about 330,000 (or more) taxpayers who used the IRS’ “Get Transcript” service. The hackers, who are said to have originated from Russia, made off with sensitive personal details, including social security numbers and home addresses. Using this information, the hackers then spoofed tax paperwork and were able to steal millions in refunds.

Continue Reading

Ashley Madison hackers drop another 20GB of stolen data

Ashley Madison hackers drop another 20GB of stolen data

The Ashley Madison hackers have released a larger cache of information stolen from the website for affairs. The first batch of data — which has already revealed numerous well-known names and email addresses tied to government agencies, among others — was about 10GB compressed, and this latest data dump is about double that: 20GB or so of compressed data on more users of the infidelity website. This latest dump appears to, in part, include emails belonging to at least one of the site's executives.

Continue Reading

Target pens settlement agreement with Visa over 2013 security breach

Target pens settlement agreement with Visa over 2013 security breach

The big data breach that affected Target in 2013 is still hurting the company, this time to the tune of $67 million. The retailer has struck a deal with financial institutions that were affected by the breach; the settlement is made with Visa on behalf of those institutions, and a deal akin to this one is said to be the works with MasterCard. The data breach, which unfortunately happened during the holiday shopping season, left about 40 million MasterCard and Visa credit and debit cards exposed to fraud — it was one of the worst security lapses affecting a big-name retailer in years.

Continue Reading

IRS hack larger than reported: 600k+ taxpayers targeted

IRS hack larger than reported: 600k+ taxpayers targeted

This year the IRS joined the OPM and other entities -- both government and private -- that were hit with cyberattacks of one sort or another. The massive Office of Personnel Management hack has received the most attention, but as you may remember, the IRS was also targeted and suffered a huge loss of data. Only, it didn't report accurate numbers. As it turns out, the hack was even more massive than originally reported, with more than half a million people having been targeted.

Continue Reading

‘Cyberflashing’ incident ushers in new era of perverts

‘Cyberflashing’ incident ushers in new era of perverts

The modern world is full of funny new terms that speak of situations facilitated by the gadgets we carry around with us. The new word buzzing around is 'cyberflashing', and some are saying the first of such incidents has taken place via a lone pervert using AirDrop. Reportedly, the suspect used Apple's AirDrop to send unsolicited indecent pictures (it is unclear whether they were images of the suspect) to a passenger on a train in London. Police say they have investigated the matter.

Continue Reading

Security issues in some Android handsets leave fingerprints exposed

Security issues in some Android handsets leave fingerprints exposed

A team of researchers with FireEye have discovered a serious security vulnerability in some Android phones involving biometric security. The flaw leaves fingerprints open to hackers by storing them in a "world readable" folder as an image file. Both the HTC One Max and the Samsung Galaxy S5 were cited as vulnerable, but other Android phones from other manufacturers could also be at risk. The HTC One Max was cited as being the most vulnerable, however, storing the fingerprints as unencrypted BMP files that could be read by any unprivileged app or process.

Continue Reading

Firefox exploit discovered, but update is already available

Firefox exploit discovered, but update is already available

If you're a Firefox user and reading this, stop and update to version 39.0.3 right now. Mozilla has revealed on their blog that a nasty exploit has been discovered that can give someone access to the files on your computer. The security hole allows JavaScript to be injected, letting an attacker search your computer and then upload files to a server in Ukraine. Even worse is that fact that no trace of the breach is left behind, so users will have no idea the breach has taken place.

Continue Reading

Square credit card reader can be hacked into card skimmer

Square credit card reader can be hacked into card skimmer

As a credit card payment-related device, the Square Reader accessory for iOS has maintained a decent track record in not falling victim to malicious hacks. Unfortunately, that might be about to change. A group of security researchers have revealed how they were able to hack the Reader, which is used to turn iPads and iPhones into mobile point of sale terminals for merchants, making it capable of stealing credit card information from customers.

Continue Reading

Dashlane comes to Apple Watch with one-touch password changes

Dashlane comes to Apple Watch with one-touch password changes

Popular password management service Dashlane has just released an update for its iOS app that introduces Apple Watch compatibility. While looking up and reading passwords from your wrist is hardly ideal, it's Dashlane's flagship feature — one-touch password changer — that makes the Apple Watch app shine. That tool is how Dashlane differentiates itself from managers like 1Password and LastPass, automatically changing and updating passwords on websites with the touch of a single button.

Continue Reading

Hackers claim Ashley Madison site breach, have data on 37 million users

Hackers claim Ashley Madison site breach, have data on 37 million users

A group of hackers have made their way through the security of dating network website Ashley Madison and claim they have the data of some 37 million of the service's users, in addition to financial records and other private information. This news was revealed by well-regarded security researcher Brian Krebs, who added that the those responsible for the hack go by the name Impact Team. Apparently a small amount of user data has been uploaded as proof, but the hackers are threatening to make everything public if their demands aren't met.

Continue Reading

Synaptics announces first self-enclosed fingerprint sensor for laptops

Synaptics announces first self-enclosed fingerprint sensor for laptops

Synaptics has debuted the first fingerprint sensing hardware for laptops and other devices that is completely self-enclosed, or "off the grid" in that it doesn't rely on other parts of a computer when authenticating a fingerprint. The company calls its technology "match-in-sensor," and says it will allow more secure transactions on computers as users get more accustomed password-free logins. By isolating fingerprint authentication, it prevents threats like malware on the computer gaining access to the data.

Continue Reading

iOS 9’s new two-factor authentication ditches annoying Recovery Key

iOS 9’s new two-factor authentication ditches annoying Recovery Key

With the release of iOS 9 Beta 3 to developers this week, Apple has released details on security changes that improve the way users verify their Apple ID from secondary, trusted devices, including better implementation of verification codes and elimination of the annoying Recovery Key. The current system in iOS 8 is known as "two-step verification," while the new version will be called "two-factor authentication." This new system is currently limited to select beta users, will be available to all when iOS 9 launches later this year.

Continue Reading

1 2 3 4 5 Next