security

Dropbox adds USB security key support

Dropbox adds USB security key support

Dropbox has updated its security features, adding in a two-step verification option that utilizes a USB key rather than a six-digit passcode. There are a few benefits to this, one of which is being able to access the account even if you don't have your phone or its battery is dead. This also eliminates the issue of phishing, as code-based two-step authentication would still be a liability if someone with the right credentials fell for a phishing scheme.

Continue Reading

LastPass goes free but only on single device types

LastPass goes free but only on single device types

It seems that freemium business models have won, with majority of services now offering a free but limited selection of features just to hook in new users and, when they get fed up with all the walls, hopefully sign up for a monthly fee. LastPass is also adopting that new setup but with a twist. New users signing up to the password management service will be able to use it for free on all smartphones but only on smartphones, or on all desktops but only on desktops.

Continue Reading

Twitter expands transparency report with two new categories

Twitter expands transparency report with two new categories

Twitter has announced that it is, for the first time, expanding the scope of its transparency report, doing so to include two new categories: email privacy practices and trademark notices. This brings the report up to five categories. In addition, Twitter is making it easier to find its data with a redesign of its transparency site, including adding improvements to its mobile transparency portal. The new design is already in place, and the data has been refreshed with the two new sections.

Continue Reading

Stagefright patches hitting Galaxy S5, Note 4, Note Edge on T-Mobile & Verizon

Stagefright patches hitting Galaxy S5, Note 4, Note Edge on T-Mobile & Verizon

While Google's Nexus devices have already been confirmed to be some of the first phones to get patched for the recent Android vulnerability Stagefright, other major devices, especially Samsung's flagships, are still at risk. While there's still no word on when the company's newest models, the Galaxy S6 and S6 Edge will get updated, a number of their older phones are getting fixes today from carriers Verizon and T-Mobile, including the Galaxy S5, Note 4, and Note Edge.

Continue Reading

Tiny “RollJam” device can unlock car, garage doors

Tiny “RollJam” device can unlock car, garage doors

High tech smart cars aren't the only one susceptible to getting hacked. Even not so smart cars and garage doors that use wireless keys are open game to both playful and malicious hackers. At DefCon, hacker Samy Kamkar demonstrated how a $32 radio device can easily obtain a wireless key's "signature" code, which can then be replayed later to unlock that same door. And the owner will suspect nothing, aside from that strange first attempt at unlocking the door which, for no conceivable reason, fails.

Continue Reading

Facebook security hole remains open months after report

Facebook security hole remains open months after report

Android users can relax. This isn't about you this time. This time, it's Facebook's turn to take the hot seat. Not that it has completely left the chair anyway. According to Reza Moaiandinm, Technical Director of marketing company SALT.agency, Facebook has a gaping security hole that leaves it wide open to attack and its users vulnerable to phishing attempts. While news of such security lapses aren't exactly new, especially with Facebook involved, Moaiandinm's beef stems from the fact that Facebook has seemingly done nothing months after he reported the exploit.

Continue Reading

Report: China’s spies have been reading US officials’ emails since 2010

Report: China’s spies have been reading US officials’ emails since 2010

China has been accused in recent months of orchestrating a massive hack against the U.S. government's Office of Personnel Management, the insurance company Anthem, and more. According to a recently leaked report and unnamed government official, Chinese spies have also been reading emails from top Obama administration officials since at least April 2010. According to the leaked report, the email hack was first spotted in early 2010, and was codenamed both “Dancing Panda” and “Legion Amethyst” by the NSA. The report was made in 2014, and indicates the email breach was still actively happening at that time.

Continue Reading

Security issues in some Android handsets leave fingerprints exposed

Security issues in some Android handsets leave fingerprints exposed

A team of researchers with FireEye have discovered a serious security vulnerability in some Android phones involving biometric security. The flaw leaves fingerprints open to hackers by storing them in a "world readable" folder as an image file. Both the HTC One Max and the Samsung Galaxy S5 were cited as vulnerable, but other Android phones from other manufacturers could also be at risk. The HTC One Max was cited as being the most vulnerable, however, storing the fingerprints as unencrypted BMP files that could be read by any unprivileged app or process.

Continue Reading

Certifi-gate uses Android remote support tools to cause harm

Certifi-gate uses Android remote support tools to cause harm

Just when you thought the nightmare might soon be over, another Android security vulnerability comes along to ruin your day. Fortunately, as scary as the name might sound, the Certifi-gate bug isn't as easy to catch, as it does require a certain number of factors to be in place. That said, given how users are quite prone to what is termed as "social engineering", or getting them to do things they shouldn't under normal circumstances, it might actually not be that hard to pull off.

Continue Reading

Electric skateboards can be hacked, too

Electric skateboards can be hacked, too

News of cars being hacked have, as expected, instilled fear in the public, but don't think turning to an electric skateboard will eliminate the risk. A new exploit called, appropriately enough, "FacePlant", has been developed to show that electric skateboards can be just as vulnerable to hackers as some cars, and it isn't a concern to take lightly. While a skateboard isn't as big of a deal as a 2-ton vehicle cruising down the highway, it'll still be a problem if you're cruising down the road and your board, without warning, locks up.

Continue Reading

Firefox exploit discovered, but update is already available

Firefox exploit discovered, but update is already available

If you're a Firefox user and reading this, stop and update to version 39.0.3 right now. Mozilla has revealed on their blog that a nasty exploit has been discovered that can give someone access to the files on your computer. The security hole allows JavaScript to be injected, letting an attacker search your computer and then upload files to a server in Ukraine. Even worse is that fact that no trace of the breach is left behind, so users will have no idea the breach has taken place.

Continue Reading

Prev 1 2 3 4 5 6 7 Next