Data Security

Google defends, revises Project Zero 90-day policy

Google defends, revises Project Zero 90-day policy

In the software security community, a debate rages around when and how to disclose vulnerabilities and bugs. One camp wants a fixed deadline in order to somewhat force software vendors to fix their bugs before word goes out to the public. Others want a slightly more secretive approach that will only disclose such issues if and only if a fix is already ready. Google's Project Zero has adopted a hard 90-day stance but now it's yielding just a wee bit to address some complaints against its policy.

Continue Reading

Hackers rob banks around the world of over $300 million

Hackers rob banks around the world of over $300 million

In what is appearing to be one of the largest bank thefts across the globe, hackers have managed to steal over $300 million from more than 100 banks in 30 different countries. The new comes from a Kaspersky Labs report given to the New York Times, which explains a large-scale, sophisticated malware was used since 2013 to siphon the money from financial institutions. No banks have officially come forward to disclose the security breaches, but victims include those in Russia, the U.S., Europe, and Japan.

Continue Reading

Anthem insurance hacking victims now targeted by phishing attacks

Anthem insurance hacking victims now targeted by phishing attacks

Earlier this week the news broke that the Anthem insurance company had been hacked with data on over 80 million potential Americans being stolen. Now the victims of the data breach are finding themselves the targets of a widespread phishing scheme from fraudsters who managed to get their hands on the stolen information. Current and past Anthem subscribers are receiving emails and even cold calls from scam artists claiming to be from the company, the US's second largest health insurer.

Continue Reading

3 Apps for Hiding Photos and More on Android

3 Apps for Hiding Photos and More on Android

Smartphones are usually personal devices (and tablets more or less are, too), but not always, and even if they are that won’t necessarily keep people from snooping around. Sometimes you need to hide files you don’t want others to see, and though we won’t presume why that’s the case, we will show you how to do it. We're concentrating on Android smartphone and tablet users in particular with this article, but iOS, Windows Phone users and others can follow along.

Continue Reading

Toshiba Encrypted USB Flash Drive includes physical keypad

Toshiba Encrypted USB Flash Drive includes physical keypad

The cloud and micro SD cards make toting data around easy, but sometimes a USB flash drive is the best choice. Protecting sensitive data on a flash drive has largely involved creating an encrypted partition or using an application like USB Safeguard. Toshiba is doing away with all of that via its new Encrypted USB Flash Drive, an ordinary flash drive with one big obvious difference: a physical mini-keyboard on the back. With this keyboard, users can enter their passcode and gain access to their otherwise secured content.

Continue Reading

Outlook Preview for move has some security misfeatures

Outlook Preview for move has some security misfeatures

It seems that Microsoft might be developing a habit of releasing good news to be followed by the nasty fine print. It happened with Windows 10 and seems to be happening now with its shiny Outlook app for iOS and Android. Though still in preview version, the app has been discovered to have some glaring security practices would be a security and privacy nightmare, especially for companies whose employees might take a liking to the app. And while there's still time to address these issue, it might not be a very good first step for Microsoft.

Continue Reading

BlackPhone vulnerability left users open to attack

BlackPhone vulnerability left users open to attack

BlackPhone, that ultra secure phone for the spies and paranoid among us, promises a lot of things, all of them revolving around data security. As with most things, however, reality turned out to be a bit different than perfect-world promises and a bug was discovered -- one that left BlackPhone users and their data open to attackers. The issue was discovered by Azimuth Security's Mark Dowd who spotted the issue on his own BlackPhone, later detailing his findings on Azimuth's website.

Continue Reading

Marriott mobile app: providing backdoor access since 2011

Marriott mobile app: providing backdoor access since 2011

Hotel chain Marriott might find itself in more trouble than its 2014 FCC fine. A senior developer at the XDA Developers Forum has revealed that the chain's mobile app might have allowed unauthorized people to gain access to private information, including names, addresses, contact numbers and credit card information. Though the app has said to have been plugged up now, the security flaw has been in existence for almost four years, exponentially increasing the possible ramifications and victims of this exploit.

Continue Reading

1Password gets even better, now has easier login creation

1Password gets even better, now has easier login creation

For the security-conscious among us, 1Password has proven itself an indispensable tool. The app — available for iOS, Android, Windows, and OS X — both manages and generates secure passwords for you, and their new TouchID features are promising. An update, rolling out for iOS users today, brings in the ability to generate one-time passwords as well as some new features for their app extension. Sync is also improving , as is 1Password’s language support, in what the AgileBits team calls their ‘awesomesauce’ update.

Continue Reading

Apple may allow Chinese government to conduct security audits on products

Apple may allow Chinese government to conduct security audits on products

According to a new report from The Beijing News, Apple will begin allowing the Chinese government to carry out security inspections on its devices that it sells in the country. The purpose for this agreement would be to address China's recent fears about iOS devices allowing access to sensitive information from both customers and the government. The deal was reportedly made between Apple CEO Tim Cook and Lu Wei, director of the director of Chinese State Internet Information Office.

Continue Reading

HealthCare.gov is shuttling personal data to third parties

HealthCare.gov is shuttling personal data to third parties

The HealthCare.gov website is no stranger to controversy, and latest to that is a discovery that some personal details about users -- including how old they are, their state and zip code, annual income, parental status, and more -- are being delivered to more than a dozen third-party websites. The information was first revealed by the Associated Press, and has since been investigated and confirmed by the Electronic Frontier Foundation (EFF.org). The information is being shared even if Do Not Track has been enabled.

Continue Reading

Google and more join pledge to protect student data

Google and more join pledge to protect student data

Both Khan Academy and Google, as well as thirteen others, have joined the growing list of companies pledging to protect students' privacy. President Obama spoke about the pledge last week, and before doing so several companies including Apple and Microsoft had signed. A total of 75 companies had signed last week, and Google and Amazon were both criticized for not doing so. On Monday, 15 new companies -- including Khan Academy and Google -- jumped aboard. This follows the administration's increased push for data security.

Continue Reading

Prev 2 3 4 5 6 7 8 9 10 Next