News

GoDaddy worked with researchers to shut down 15,000 domain-shadowing websites tied to bogus affiliate marketing offers promoted via spam campaigns.

The wireless gateways are used in PoS, industrial IoT and distributed enterprise settings.

Half of Threatpost readers surveyed in a recent poll don't believe that consent realistically exists when it comes to facial recognition.

Er, do you have your original password written down somewhere?

Something for the Weekend, Sir?  I have been propositioned at midnight at a hotel door. "What's your room number?"…

Firm explains but security folk not appy with clarifications

Weird things are afoot with NordVPN's app and the traffic it generates - Reg readers have spotted it contacting strange domains in the same way compromised machines talk to botnets' command-and-control servers.…

Ignoring privacy laws, storing plain text passwords, slurping millions of contact details come back to bite web giant

Here's a triple Thursday whammy: Facebook has been accused of breaking Canada’s privacy laws, and is being investigated in the US and Ireland for seemingly mishandling people's private data.…

An attack of conscience or have the super-snoops got something better now?

The NSA's mass-logging of people's phone calls and text messages, at home and abroad – a surveillance program introduced after the September 11, 2001 terror attacks – is set to end as it's no longer worth the hassle.…

A pair of bugs would allow attackers to compromise the WiFi password of a TV and the multimedia stored inside it.

Password resets reset. Too bad Uncle Sam hasn't got the message yet

Microsoft has finally decided to get rid of password expiration policies in Windows because forcing people to reset their passwords periodically harms security.…

An auditing program for the voice assistant technology exposes geolocation data that can be personally identified, sources said.

A side-channel attack in Qualcomm technology, which is used by most modern Android devices, could allow an attacker to snatch private keys.

You mean they already do? Pull the other one

Cyber UK 2019  Ever-exciting Cabinet Office minister David Lidington has put his name to a new infosec response testing tool developed by the NCSC, called (wait for it) Exercise in a Box.…

Unsealed warrant in Massachusetts adds to growing privacy debate

Analysis  A US judge gave the cops permission to force people's fingers onto seized iPhones to see who could unlock them, a newly unsealed search warrant has revealed.…

Facebook may be fined as much as $5 billion by the FTC for data issues related to the Cambridge Analytica incident.

Two weeks and counting, and no sign of a proper solution

Unlucky Sophos antivirus users face a dilemma: either uninstall the software, or install April's Windows security fixes. That's because having both in place at the same time will bork their machines.…

Google Play has removed up to 50 apps that once downloaded plagued systems with full-screen ads.

If we all chip in, we can help secure old Blighty

Cyber UK 2019  "We're talking about how to design telecoms systems properly for the long term," National Cyber Security Centre CEO Ciaran Martin told press at UK.gov's infosec event in Glasgow today. "That is a bigger and sometimes different issue from the Chinese."…

The malware hides in the legitimate game downloads, signed with a real certificate; connections to ShadowHammer have been found.

How concerned are you about the privacy implications of facial recognition? Weigh in with our poll.

GCHQ U-turns, wants Joe Public onside as well as industry

Cyber UK 2019  GCHQ's director-general has called for more public trust in the controversial British spy agency.…