It's not bad enough that Paypal is prone to shutting down your account and seizing your dough if you have a particularly successful fundraiser -- they also have virtually no capacity to prevent hackers from changing the email address, password and phone numbers associated with your account, even if you're using their two-factor authentication fob. Read the rest
In Shopshifting: The potential for payment system abuse, Karsten Nohl and Fabian Bräunlein showed attendees at Hamburg's Chaos Communications Congress just how poor the security in payment terminals is, and demonstrated several attacks that would let them harvest card numbers and PINs, make undetectable phantom charges and refunds to merchant accounts, and commit other mischief. Read the rest
No need to struggle with remembering long and complicated passwords, Sticky Password is your password management and form filler solution, available for Mac, Windows, iOS, and Android. This lifetime Sticky Password Premium subscription protects your online identity by providing strong encrypted passwords for all your accounts, managed by a single master password known by you, and only you.Strong, unique passwords, whenever and wherever you need themAutomatically log-in to recognized sitesCreated by the team behind AVG AntivirusChoose between cloud-based or local storageFill out forms instantlyUnbeatable security Support for all your devicesIntuitive interface
Last week, security researcher Chris Vickery discovered a database containing 3.3 million accounts from Sanriotown, a commercial Hello Kitty fansite operated by Sanrio, Hello Kitty's corporate owners. Read the rest
The Interapp from Tel Aviv's Rayzone Group is an intrusion appliance that uses a cache of zero-day exploits against common mobile phone OSes and is marketed as having the capability to infect and take over any nearby phone whose wifi is turned on. Read the rest
Michael C. Ford has pleaded guilty to accusations that he spent at least two years coercing at least 75 women into sending him naked photos of themselves and other women he demanded that they covertly photograph in dressing rooms and changing rooms. Ford worked at the US embassy in London while committing his crimes. Read the rest
The scale and virulence of internet harassment often lingers in the news, but three women who have faced down the bullies are sharing their guide to staying safe online.
The advice is eminently sensible, well thought-out and derives, sadly, from all-too-familiar experience.
Feeling overwhelmed? Don’t have time to read the whole thing? Start with these three steps:
Created by Feminist Frequency's Anita Sarkeesian, Women, Action & the Media founder Jaclyn Friedman and Saying Abortion Aloud author Renee Bracey Sherman, the guide was made necessary by "the failure of social media services to adequately prevent and deal with the hateful targeting of their more marginalized users."
As this guide details, forcing individual victims or potential targets to shoulder the costs of digital security amounts to a disproportionate tax of in time, money, and emotional labor. It is a tax that is levied disproportionately against women, people of color, queer and trans people and other oppressed groups for daring to express an opinion in public.
Even if you're an old hand with the online safety basics, the miscellaneous tips are still unexpected and useful. For example, did you know can use free, throwaway VOIP numbers from Google to conceal your real cell number? Read the rest
Vtech is a ubiquitous Hong Kong-based electronic toy company whose kiddy tablets and other devices are designed to work with its cloud service, which requires parents to set up accounts for their kids. 4.8 million of those accounts just breached, leaking a huge amount of potentially compromising information, from kids' birthdays and home addresses to parents passwords and password hints. Read the rest
In the wake of the Paris attacks, the French National Assembly has declared a state of emergency with sweeping powers, without any substantial debate. Included in the bill are the power to order the nation's ISPs to block websites without any judicial review or court order, and for authorities to seize and search electronic devices without a warrant.
The $150 Smarter Ikettle lets you start your water boiling from anywhere in the world over the Internet -- and it also contains long-term serious security vulnerabilities that allow attackers to extract your wifi passwords from it. Read the rest
A beautiful piece of writing by Schabse presents the history of Web authentication as a series of conversational gambits and ripostes between someone who wants to let users prove their identity online, and someone who wants to impersonate those users. It's a great way to present a subject that's both esoteric and vital, and I've never seen it before. Read the rest
Mayor Anthony R. Silva was on his way back from a mayor's conference in China when the DHS border guards confiscated his laptop and phones and detained him, telling him he would not be allowed to leave until he gave them his passwords. He has still not had his devices returned. Read the rest