security

Internet-connected gadgets can be great, but they're not without their risks. We've seen warnings over poor IoT security from watchdogs and the government alike, and we've seen multiple instances where poor security has resulted in various data breaches. The latest example of this risk comes from a North American casino which was left exposed to hackers due to a smart fish tank. This fish tank, which was connected to the casino's network, served as an access point for hackers who then used it to find other network vulnerabilities.

Continue Reading

Two huge Dark Web marketplaces, peddling illegal drugs, fake documents, firearms, and more, have been shut down in a clandestine sting. US and European investigators collaborated for months on the takedown, which saw AlphaBay and Hansa - together responsible for more than 350,000 "illicit commodities" - first infiltrated and then taken offline. Indeed, police in the Netherlands were able to secretly take control of Hansa and then track what its users were doing.

Continue Reading

Hoverboard fires weren't enough to deter some users from rolling these two-wheeled vehicles. Now we've got hackers taking to the streets, too. What one security company found in a popular Segway-brand Hoverboard will be enough to turn your stomach - or at least scrape up your knees as your Hoverboard is remotely commanded to stop, quite abruptly.

Continue Reading

Apple has released a new version of iOS 10 for iPhone, iPad, and iPod touch, including a number of security patches affecting Safari, Messages, and more. The update, iOS 10.3.3, weighs in at 138.5 MB, and is as always a free download. Apple's advice is that iPhone and iPad users should install it as soon as possible.

Continue Reading

Apple is working on turning its biometric sensor into a secret panic button, with Touch ID potentially being used to send out a cry for help if you're getting mugged. Detailed in a freshly published patent, granted to Apple earlier this week, the so-called "Biometric Initiated Communication" method relies on the ability of the fingerprint sensor to differentiate not only between different fingertips but how they make contact. It could potentially mean the iPhone 8 is able to use Touch ID as another input option.

Continue Reading

With security breaches seemingly popping up in the news every other week, by now most of us should (hopefully) know the basics of keeping our data safe online. Today, however, the FBI is trying to draw attention to a potential security risk that is often overlooked: internet connected toys. To hear the FBI lay out its case, it sounds like the organization has a lot of concerns about the data these internet connected toys can collect.

Continue Reading

MySpace accounts can be hijacked with only three pieces of easy-to-attain information. Once the attacker has the URL for the account they want to break into, they need only head to the Account Recovery page. While this would normally be a place where some sort of human user would verify information - or at least an email would be necessary - this situation requires nothing of the sort. It's incredibly easy to break into any MySpace account right this minute.

Continue Reading

The US government's laptop ban for travelers on Middle Eastern airlines has been lifted, with the rules squashed for the last airline to be impacted. The Department of Homeland Security had begun the restrictions back in March, with nine predominantly Middle Eastern airlines impacted. Passengers were unable to bring large electronic items, including laptops, into the cabin as hand luggage. Instead, they needed to be stowed in checked luggage in the hold.

Continue Reading

Another day, another security breach: researchers at UpGuard have revealed that Verizon suffered a fairly massive data leak, exposing personal information on millions of customers. In this case, it wasn't Verizon itself that is responsible for the leak, but rather a third-party company partnered with Verizon. This breach also has a few things in common with the RNC leak that we learned about late last month.

Continue Reading

Tell me who your friends are and I'll tell you who you are, as the saying goes. Google has apparently taken that age-old adage to heart in trying to protect users from less than conscientious Android apps. Such apps might use permissions and data more than they should, at least compared to other similar apps that behave properly. And while the reasoning behind such peer grouping, Google unsurprisingly injects a pinch of machine learning to make it a less overwhelming task.

Continue Reading

Trump Hotels has announced another data breach, saying this one involves the Sabre Hospitality Solutions service provider used by the hotels for things like booking reservations. Per an investigation into 'an incident,' Sabre discovered that a hacker had gained access to 'account credentials' which made it possible for this person/group to access some reservation data as well as payment card data.

Continue Reading

TP-Link has made a couple of big announcements, the first being new smart home integrations with IFTTT and Alexa. Joining those smart home integrations is TP-Link HomeCare, a product being delivered to some routers via a firmware update. With HomeCare, these select router owners get access to parental controls, as well as security via integrated malware protection and anti-virus control.

Continue Reading