The second wave of Facebook’s sharing of Government Request data comes this week in short form. Facebook is one of a collection of groups to have begun showing off what they’re able in government data requests since the age of the NSA spill came to fruition last year.
This week the folks at Apple have added to the stacks of sites making clear that they were either unaffected by the Heartbleed bug or have been patched successfully. Apple has released a statement that suggests they "take security very seriously" and that iOS and OS X "never incorporated the vulnerable software" in the first place. They also made clear that "key web-based services were not affected" either.
This week there’s little question that the internet security world has been tossed down a flight of stairs. With Heartbleed, a relatively major bit of a mistake was made in OpenSSL, a form of security that most of the internet uses, resulting in a major open door for hackers and spies of all kinds. With this bug having only been discovered this week and implemented a whopping two years ago, IT professionals are notably miffed.
There should have been little doubt that once the Heartbleed bug was realized, one of the first things the public was going to do was go on a witch hunt for the person or people responsible. As it were, Mr. Robin Seggelmann of Münster in Germany says that he was only aiming to improve OpenSSL, and all allegations that he may have introduced the bug on purpose are false.
When you think about the scope of the Heartbleed bug, you have to consider that it was (and is) allowing hackers to see data - any data - stored on servers. This data vulnerable to CVE-2014-0160 (aka Heartbleed) is not limited to certain kinds of data - it’s anything and everything. So what’s to be done?
In light of recent data collection scandals, Yahoo has been girding up its loins and strengthening the security of its services. Now the company is reporting what it has so far accomplished, which practically consists of applying HTTPS on almost all aspects of its Internet presence.
In what maybe one of the biggest yet at the same time least publicized hacking incidents, the forums of Boxee.tv has been hacked and the fruits of those efforts have been publicized. The security breach yielded information about 158,128 users, including data that can be used to possibly comprise the users' other accounts.
A source speaking to The New York Times on Tuesday hinted at upcoming legislation that would aim to end the NSA's controversial bulk phone records collection. Today the Obama administration has introduced that legislation, getting it in a day sooner than the original deadline given to the Department of Justice.
Google has released its latest Transparency Report, and in it is a reflection of our increasingly digital world. The number of data requests in the last half of 2013 was more than double the requests from 2009, when Google first began publishing transparency reports, and was a few thousand more than the same time period ending in 2012.