Data Security

Judge rules fingerprint-locked phones are fair game during investigations

Judge rules fingerprint-locked phones are fair game during investigations

There are many ways to protect your smartphone: password, pin, pattern, and more recently, a fingerprint. While legally you can't be compelled as part of an investigation to reveal any of the first three, a judge has ruled that you can be forced to relinquish your fingerprint to investigators seeking access to your device. The reason, says the judge, is that the fingerprint isn't knowledge like a password, but is instead a physical object of sorts, like a key or a DNA sample.

Continue Reading

Whisper staff suspended amid investigations into Guardian report

Whisper staff suspended amid investigations into Guardian report

Whisper, the social network/app built on the premise of allowing users to post brief statements and images in complete anonymity, has put its editorial staff on suspension, a decision made by CEO Michael Heyward. The decision comes as Whisper continues to defend itself in response to a newspaper report from The Guardian that said the company did in fact track its users even if they opted out of location-based features.

Continue Reading

Xiaomi global expansion: moving data centers out of China

Xiaomi global expansion: moving data centers out of China

Xiaomi is growing out of its shell. It has already started making some of its devices, unfortunately not always the latest ones, available in other countries, hoping to replicate the same wild success it enjoys in China. But in order to scale better to an international audience, especially as far as its services are concerned, the company is now also relocating some of its data away from Beijing and into other territories, some of them in the US. But is that really the only reason for this move?

Continue Reading

iCloud attacks were real: Apple comments

iCloud attacks were real: Apple comments

This week it was reported that Apple’s iCloud servers were under attack by China - as it turns out that’s not entirely true. Apple has made clear in a statement that there were indeed "intermittent organized network attacks" this week, but that they were done on people attempting to access the iCloud webpage. There weren’t any attacks on the iCloud servers themselves, nor were there any drops of user information. Apple does, however, suggest that you pay attention to "certificate warnings."

Continue Reading

Google teams with FIDO’s U2F USB Security Key

Google teams with FIDO’s U2F USB Security Key

The Security Key is not something you probably have in your pocket right this minute. It’s a newer sort of verification system made in partnership with the FIDO Alliance, now working with Google and Google Chrome for an added layer of security for Google websites. With this system you’ll never need worry about being scammed by a website pretending to be Google - not even once. You will need an official U2F Security Key to make it all work to Google's satisfaction.

Continue Reading

Facebook proactively searching for compromised user data

Facebook proactively searching for compromised user data

We see it a lot lately — some hacker makes a big data grab, then dumps the info in a dark corner of the web. The most recent victim of polarizing headlines about compromised data has been Dropbox. While claiming the username/password combinations taken were dated, they still faced a lot of furrowed brows at the data grab. Securing your own servers is a smart measure, but Facebook — perhaps the biggest data fish in the sea — is taking it a step further, and has taken to hunting in the deep waters.

Continue Reading

Whisper lashes out over “vicious lies” about user tracking

Whisper lashes out over “vicious lies” about user tracking

With every information breach that happens involving government surveillance, one thing become increasingly clear: privacy is often an illusion, at least when it comes to your digital life. Whisper is one app that operates under that privacy illusion, at least according to The Guardian, which posted a large piece today calling out the company for what it says are numerous privacy violations, including handing information over to the government and tracking some users. Now Whisper has fired back, lashing out at The Guardian and calling the claims "vicious lies".

Continue Reading

Google researchers discover SSL 3.0 bug

Google researchers discover SSL 3.0 bug

We've heard about a lot of bugs this year, not the least of which being the recent "Shellshock" bug. Now Google researchers have discovered a bug in SSL 3.0 that could allow hackers to nab user data. The discovery was detailed today in a report published by the team, which says they were able to breach the protocol using what they call a "POODLE" attack -- Padding Oracle On Downgraded Legacy Encryption attack. With this, they have recommended that SSL 3.0 be disabled to mitigate the problem.

Continue Reading

Millions of Dropbox credentials hacked from 3rd party services [UPDATE]

Millions of Dropbox credentials hacked from 3rd party services [UPDATE]

Just when you though Dropbox was in the clear, a storm suddenly rises to dump a rain of worries on the service's millions of users. As much as 7 million usernames and their corresponding passwords have reportedly been accessed, with a few of them "teased" with a pastebin posting. This incident comes shortly on the heels of yesterday's revelation of a bug in Dropbox's desktop client that lead to some data loss. Considering passwords are involved, this new development, however, has more frightening consequences.

Continue Reading

Prev 1 2 3 4 5 6 7 Next