Data Security

Apple’s Tim Cook interview on NSA begins with “no back door”

Apple’s Tim Cook interview on NSA begins with “no back door”

Today on the 30th anniversary of the introduction of the Mac computer to the world by Apple, Tim Cook has taken to ABC to speak not only about oddities like Sapphire Crystal, he's come to speak about the NSA as well. After having actually headed to the White House on the 17th of December, 2013, to speak with the President about the National Security Agency's surveillance programs, here Cook suggests that he wishes he could say more.

Continue Reading

Snowden talks government, privacy, and having no regrets during live Q&A

Snowden talks government, privacy, and having no regrets during live Q&A

Since leaking a myriad of documents on NSA and government surveillance and taking roost in Russia, Edward Snowden has kept a low profile -- until today. Via Twitter, the former NSA contractor was asked a slew of questions under the #AskSnowden hashtag, a handful of which he proceeded to answer with sufficiently long responses, including the proclamation that he has "no regrets".

Continue Reading

Privacy watchdog finds NSA program ineffective and illegal

Privacy watchdog finds NSA program ineffective and illegal

Just a few days after Obama's awaited, and disappointing to some, speech about the NSA's program, an independent federal body came out with its own rather scathing analysis of the divisive program. According to the Privacy and Civil Liberties Oversight Board, the NSA's phone record collection spree in the name of counter-terrorism is not only ineffective but also illegal and needs to be shutdown.

Continue Reading

Microsoft to let foreign customers store data on non-US servers following NSA debacle

Microsoft to let foreign customers store data on non-US servers following NSA debacle

Microsoft has made a decision that runs afoul of many tech companies' sensibilities -- allowing foreign customers to have their data stored on non-US servers. Such a decision was prompted by the NSA hoopla over the past months and concerns about customers' privacy. Spying revelations caused a backlash across the globe, and tech companies became the focus of much of that ire, spurring actions such as this.

Continue Reading

Hacker accesses 70,000 Healthcare.gov records, says website is 100% insecure

Hacker accesses 70,000 Healthcare.gov records, says website is 100% insecure

The Healthcare.gov website has had its fair share of troubles since launch, and one that has been persistent among them is claims of security vulnerabilities. TrustedSec's CEO David Kennedy has been vocal about these issues, though little has been done to address them. Perhaps to make a bigger point, he took advantage of the vulnerability in recent times and managed to access 70,000 records over the course of four minutes, saying, "Seventy-thousand was just one of the numbers that I was able to go up to, and I stopped after that."

Continue Reading

NSA Dishfire program pilfers millions of text messages per day

NSA Dishfire program pilfers millions of text messages per day

The latest in a long line of NSA-centric leaks comes a report about alleged project "Dishfire" from The Guardian, a program said to result in the harvesting of millions of text messages by the security agency on a daily basis. This is not targeted message collection, instead being the mass harvesting of nearly 200 million messages per day, which are then stored and used to extract details like credit card info, geolocation, and one's contact networks.

Continue Reading

Starbucks mobile payment app stores user data in clear text

Starbucks mobile payment app stores user data in clear text

Shopping at Starbucks is convenient for the mobile users among us via the use of the company's mobile payment app. As it turns out, this same app stores user data in clear text, causing a potential privacy issue. Confirmation of this was made by Starbucks yesterday night, and executives confirmed they were previously aware of the method of storage. The discovery was first made known by Daniel Wood, a security researcher who reportedly attempted to contact the company about it this past November.

Continue Reading