Political Parties Still Have Cybersecurity Hygiene Problems

In the three years since Russian operatives breached the servers of the Democratic National Committee and threw presidential politics into a state of perpetual chaos, countries around the world have been on notice to the threat of foreign interference in elections. But as the US prepares for another presidential election next year, and as the European Union holds parliamentary elections this week, a new report reveals a range of obvious…

May 21, 2019
Read More >>

We Are Tenants on Our Own Devices

A decade ago, Amazon abruptly deleted copies of George Orwell’s 1984 from the Kindles of its American customers. The move instantly evoked the “memory holes” in the novel’s totalitarian dystopia, and it inspired about equal measures of shock, outrage, and jokes. (If a fictional Amazon in a dystopian novel had performed the same mass deletion, critics would have said it was too on the nose.) But in hindsight, Amazon’s action…

May 20, 2019
Read More >>

Bluetooth’s Complexity Has Become a Security Risk

Bluetooth is the invisible glue that binds devices together. Which means that when it has bugs, it affects everything from iPhones and Android devices, to scooters, and even physical authentication keys used to secure other accounts. The order of magnitude can be stunning: The BlueBorne flaw, first disclosed in September 2017, impacted five billion PCs, phones, and IoT units. As with any computing standard, there’s always the possibility of vulnerabilities…

May 19, 2019
Read More >>

Google Tracks What You Buy Online With Gmail

The week started out with a bang, or several of them really. Remember Meltdown and Spectre, the vulnerabilities that affected basically every Intel processor from the last decade? There’s a related attack called ZombieLoad—yes, ZombieLoad—with similarly broad and bad impact. Serious stuff! But honestly not even the worst disclosure of the week. That distinction probably goes to Cisco. Researchers at security firm Red Balloon found that they could hack the…

May 18, 2019
Read More >>

The False Promise of “Lawful Access” to Private Data

A stark reality keeps confronting us: Terrible things are being done in the world. The darkest impulses of some people are honed and polished on the internet, in secret. Then those impulses are visited upon us, in violent and sickening ways. One of the most recent such tragedies, as I write, happened in Christchurch, New Zealand, on March 15, 2019, but there might be another by the time you read…

May 17, 2019
Read More >>

Goznym Takedown Shows the Anatomy of a Modern Cybercriminal Supply Chain

For decades, the security industry has warned that the cybercriminal economy has been developing its own highly specialized, professional supply chain. But only when law enforcement tears the lid off a well-honed hacker operation—as they did today with the global Goznym malware crew—does the full picture of every interlinked step in that globalized crime network come into focus. On Thursday, police in six countries along with the US Department of…

May 16, 2019
Read More >>

The FCC’s Robocall Plan Sounds Awfully Familiar

Despite high-profile arrests and protocols with clever names, the robocall scourge remains indomitable. On Wednesday, Federal Communications Commission chair Ajit Pai teased a new proposal to put a serious dent in the problem. Stop us if you’ve heard this one before. On the face of it, Pai’s proposal sounds appealing. It would allow carriers to block robocalls by default, rather than on an opt-in basis. If you want even more…

May 16, 2019
Read More >>

The FCC’s Robocall Plan Sounds Awfully Familiar

Despite high-profile arrests and protocols with clever names, the robocall scourge remains indomitable. On Wednesday, Federal Communications Commission chair Ajit Pai teased a new proposal to put a serious dent in the problem. Stop us if you’ve heard this one before. On the face of it, Pai’s proposal sounds appealing. It would allow carriers to block robocalls by default, rather than on an opt-in basis. If you want even more…

May 16, 2019
Read More >>

The FCC’s Robocall Plan Sounds Awfully Familiar

Despite high-profile arrests and protocols with clever names, the robocall scourge remains indomitable. On Wednesday, Federal Communications Commission chair Ajit Pai teased a new proposal to put a serious dent in the problem. Stop us if you’ve heard this one before. On the face of it, Pai’s proposal sounds appealing. It would allow carriers to block robocalls by default, rather than on an opt-in basis. If you want even more…

May 16, 2019
Read More >>

The FCC’s Robocall Plan Sounds Awfully Familiar

Despite high-profile arrests and protocols with clever names, the robocall scourge remains indomitable. On Wednesday, Federal Communications Commission chair Ajit Pai teased a new proposal to put a serious dent in the problem. Stop us if you’ve heard this one before. On the face of it, Pai’s proposal sounds appealing. It would allow carriers to block robocalls by default, rather than on an opt-in basis. If you want even more…

May 16, 2019
Read More >>