Encryption

How was Hacking Team hacked?

The attacker who stole Hacking Team’s data gained access to an employee’s computer while the victim was still logged in, as Simon PG Edwards explains.


1 min read

This video explains the dangers of public WiFi, by spying on British MPs

Watch this video and see for yourself, just how easy it is for hackers to spy upon your internet activity… if you’re not properly protected when using a public WiFi hotspot.


44 sec read

welivesecurity.com

How to steal PGP encryption keys (using radio waves and pita bread)

An ingenious team of Israeli security researchers at Tel Aviv University have discovered a way to steal secret encryption keys using a gadget so small it can be hidden inside some pita bread.

Read more in my article on the We Live Security blog.


0 sec read

Reddit, Wikipedia, Bing and the FBI agree – an encrypted web is a safer web

Reddit is the latest in a series of popular websites to announce that it will be switching to HTTPS by default, protecting their visitors with secure connections.


1 min read

Can you spot the difference between Google, Yahoo, and Bing?

Think you can spot the difference between the world’s top search engines?

Hint: it’s security-related.


1 min read

heatsoftware.com

Don’t let the LastPass hack destroy your faith in password managers

The LastPass hack may rattle some people’s faith in password managers, but the truth is that they’re a heck of a lot safer than the alternative.

Read more in my article on the Optimal Security blog.


0 sec read

Sunday Times reporter tells CNN everything you need to know about Snowden story

Perhaps unwittingly, the Sunday Times has revealed on video everything you need to know about its recent Edward Snowden report.


1 min read

LastPass has been hacked. Change your master password now

Hackers have attacked LastPass, the popular online password manager, and stolen data.

If you’re a user, you might be wise to reset your master password and ensure that multi-factor authentication is enabled.


1 min read

bitdefender.com

Facebook – now with added PGP encrypted notification emails to boost your security

The number of monthly active Facebook users is now close to 1.5 billion, and by my reckoning at least twelve of them are likely to be using PGP.

Nevertheless, this sounds like a good move…

Read more in my article on the Hot for Security blog.


0 sec read

Another tech firm says it has quit the UK over government internet surveillance plans

Eris Industries says it simply cannot engage in business if it is forced to incorporate cryptographic backdoors that can be accessed by MI5 and GCHQ.


2 min read

heatsoftware.com

The Logjam vulnerability – what you need to know

Researchers discover a new attack against encrypted communications on the internet.

Read more in my article on the Optimal Security blog.


0 sec read

Technology firm says it is quitting the UK because of government internet surveillance plans

The first of many?

The UK government’s plans for a Snooper’s Charter and backdoors on secure messaging applications don’t prove popular with one technology company.


1 min read

Barclays, Halifax and Tesco banks still vulnerable to POODLE attack

Six months after the world was warned about the POODLE bug, some online banks don’t seem to have received the memo.


51 sec read

intego.com

1500 Apple-approved iOS apps at risk from data-exposing vulnerability

Some 1500 iOS apps have been found to contain a serious vulnerability that could be exploited by hackers to spy on communications, steal passwords and bank account information. What do you think Apple should do about it?

Read more in my article on the Intego Mac Security blog.


0 sec read

Slack has been hacked

Hip business messaging app Slack has acknowledged that it has been hacked, with customer names, email addresses and other information exposed.


2 min read

Thousands of popular iOS and Android apps hit by FREAK flaw

Some of the most popular Android and iOS apps remain impacted by the FREAK flaw, and could open the door for hackers to steal passwords and personal information.


1 min read