Security news, trends, analysis and practical advice

us china flags

But WAY classier than Post-Its, right?

This pilot fish has used monthly desk calendars at work for years to track what she's worked on each day. But somehow she never looked at the sections in the back -- like the one designed to destroy IT security.

D-Link patches router, promises more fixes

D-Link issued fixes on Monday for flaws that could allow remote access to one of its routers, and will patch other models in the coming week.


Conn. AG launches Lenovo-Superfish 'crapware' probe

Connecticut's state attorney general today announced a probe into Lenovo's practice of bundling adware on consumer PCs.

Twitter investigates ISIS threats against Dorsey, Costolo and employees

Twitter is working with law enforcement to investigate threats made against its executives and employees.


Mozilla scrubs Superfish certificate from Firefox

The hotfix detects whether Superfish has been removed, and if so, removes the Superfish root from Firefox.

Silent Circle's Blackphone 2

Silent Circle targets the enterprise with its secure Blackphone 2

Silent Circle, producer of the privacy-centric Blackphone, is turning its attention to enterprise customers.

NSA authority to collect bulk phone data extended to June 1

A U.S. secret court has extended until June 1 the bulk collection of private phone records of Americans by the National Security Agency.

uber logo

Breach exposes personal data on 50,000 Uber drivers

The names and license plate numbers of about 50,000 Uber drivers were compromised in a security breach last year.

privacy info protect ts

White House privacy proposal aims to give consumers control over data

U.S. businesses that collect personal data would be required to describe their privacy and security practices and give consumers control over their personal information under a proposed privacy bill of rights released Friday by the...

malware keyboard security bug virus

Lenovo to flush 'crapware' from its consumer PCs after Superfish sin

Lenovo will immediately begin reducing the amount of "crapware" on its consumer PCs, a move triggered by last week's admission that adware pre-loaded onto the company's machines posed a critical security threat.

Hackers exploit router flaws in unusual pharming attack

An email-based attack spotted in Brazil recently exploited security flaws in home routers to allow hackers to change DNS settings.


Researchers uncover signs of Superfish-style attacks

Researchers at the Electronic Frontier Foundation found evidence that indicates attackers have exploited a security vulnerability in the Superfish adware and a slew of other programs

05 privacy

EPIC files FTC complaint about Samsung's Smart TV 'surveillance'

A complaint filed by a privacy group to the FTC argues that Samsung's Smart TVs intercept and record private communications of consumers in their homes, violating a number of rules including the Children's Online Privacy Protection...


Sen. Nelson questions use of StingRays for phone surveillance

Florida Sen. Bill Nelson is asking the FCC about the certification process for a device law enforcement is using to track suspects without first getting a court order.

Lenovo site hack

Lenovo website hacked in wake of Superfish debacle

Lenovo's website appeared to have been hacked Wednesday, possibly in retaliation for a piece of adware it installed on PCs that was found to have opened up a security hole. Early Wednesday afternoon Pacific time, some visitors...


Lenovo's brand 'buzz' score takes hit after Superfish crapware flap

Lenovo's "brand buzz" rating fell by half after reports surfaced that it had pre-loaded hacker-vulnerable adware onto consumer PCs, a brand quality measurement firm said today.

internet security with lock

Google scrubs Pwnium hack contest

Google has shut down its annual Pwnium hacking contest, which it has held alongside the better-known Pwn2Own challenge each spring since 2012.


Facebook fixed 61 high-severity flaws in'14 through its bug bounty program

Facebook confirmed and fixed 61 high-severity vulnerabilities last year after the flaws were reported via its bug bounty program.

internet gavel keyboard

More lawyers swoop down on Lenovo, Superfish with class-action lawsuits in hand

Lenovo and adware maker Superfish came under more legal fire as two new lawsuits were filed in federal courts taking the firms to task for putting consumers at risk of hacker spying and information theft.

Load More