GitHub’s Hardcore Plan to Roll Out Two-Factor Authentication (2FA)
GitHub has spent two years researching and slowly rolling out its multifactor authentication system. Soon it will be mandatory for all 100 million users—with no opt-out.
Security / Cyberattacks and Hacks
Teens Hacked Boston Subway’s CharlieCard to Get Infinite Free Rides—and This Time Nobody Got Sued
In 2008, Boston’s transit authority sued to stop MIT hackers from presenting at the Defcon hacker conference on how to get free subway rides. Today, four teens picked up where they left off.
Panasonic Warns That IoT Malware Attack Cycles Are Accelerating
The legacy electronics manufacturer is creating IoT honeypots with its products to catch real-world threats and patch vulnerabilities in-house.
Hackers Rig Casino Card-Shuffling Machines for ‘Full Control’ Cheating
Security researchers accessed an internal camera inside the Deckmate 2 shuffler to learn the exact deck order—and the hand of every player at a poker table.
A Clever Honeypot Tricked Hackers Into Revealing Their Secrets
Security researchers set up a remote machine and recorded every move cybercriminals made—including their login details.
New ‘Downfall’ Flaw Exposes Valuable Data in Generations of Intel Chips
The vulnerability could allow attackers to take advantage of an information leak to steal sensitive details like private messages, passwords, and encryption keys.
Microsoft’s AI Red Team Has Already Made the Case for Itself
Since 2018, a dedicated team within Microsoft has attacked machine learning systems to make them safer. But with the public release of new generative AI tools, the field is already evolving.
Criminals Have Created Their Own ChatGPT Clones
Cybercriminals are touting large language models that could help them with phishing or creating malware. But the AI chatbots could just be their own kind of scam.
Security News This Week: The Cloud Company at the Center of a Global Hacking Spree
Plus: A framework for encrypting social media, Russia-backed hacking through Microsoft Teams, and the Bitfinex Crypto Couple pleads guilty.
Free Airline Miles, Hotel Points, and User Data Put at Risk by Flaws in Points Platform
Flaws in the Points.com platform, which is used to manage dozens of major travel rewards programs, exposed user data—and could have let an attacker snag some extra perks.