Ars Technica's Dan Goodin is being sued by Keeper Security over an article about a defect in its password manager

Cory Doctorow 8:28 am Thu Dec 21, 2017

On December 15, Ars Technica ran a story by veteran security reporter Dan Goodin in which Goodin reported on a disclosure by Google researcher Tavis Ormandy, who had discovered that Keeper Security's password manager, bundled with Windows 10, was vulnerable to a password stealing bug that was very similar to a bug that had been published more than a year before.

Ormandy had reported the bug to Keeper Security in advance of publication and waited until the company had issued a patch to disclose it.

Keeper Security has filed a lawsuit in Illinois (where it is based) against Goodin and Ars Technica, alleging that the factual report of the defects in its products "made false and misleading statements about the Keeper software application suggesting that it had a 16-month old bug that allowed sites to steal user passwords."

Keeper Security previously threatened to sue Fox IT, a security research firm, over publication of another defect in its products.

Illinois has good anti-SLAPP laws, which protect critical speech from legal attacks that try to outspend critics, which bodes well for Ars and Goodin. In the meantime, the lawsuit has attracted critical attention to Keeper Security, as security journalists and researchers speak out against "ridiculous" actions that are tantamount to "bullying."

Keeper Security Inc v Goodin et Al

Security firm Keeper sues news reporter over vulnerability story [Zack Whittaker/Zdnet]

Here are the 200 most common passwords

Nordpass partnered with researchers to evaluate a 3TB database to find the 200 most common passwords. Topping the list is "password," followed by "123456," which is not surprising. But the 9th most common password is "col123456." Why is that so popular? What does "col" stand for? And "fuckyou" is way down the list at 88.… READ THE REST
Posh British bank tells its posh customers to turn off phone updates

The high-class British bank Coutts (~£1m minimum balance) has told its customers to turn off phone updates. Despite its £690m annual revenue, its app breaks in the latest version of iOS and that's its idea of a fix, until it finds a boffin to sort out out the problem with the new electrics. If you… READ THE REST
College to close after severe ransomware attack

Lincoln College, among few rural historically Black colleges, survived two World Wars and the Great Depression. But a ransomware attack, two years of the Covid pandemic, and a bunch of other stuff have finally put an end to it. Lincoln College was a victim of a cyberattack in December 2021 that thwarted admissions activities and… READ THE REST
Get a lightly used 7th Gen iPad for under $300

We thank our sponsor for making this content possible; it is not written by the editorial staff nor does it necessarily reflect its views. New year, new you! And perhaps a new iPad is in the cards for 2023, but if you're working with a strict budget, there's nothing wrong with opting for a slightly… READ THE REST
Shape up your digital space one app at a time with over half off this Mac desktop cleaner

We thank our sponsor for making this content possible; it is not written by the editorial staff nor does it necessarily reflect its views. December is supposed to be the most wonderful time of the year for everyone, but it definitely doesn't feel that way, even when you are practicing sufficient self-care. Between the stress of… READ THE REST
Prinker's temporary tattoo printer is perfect for parties or as a gift, and it's $40 off

We thank our sponsor for making this content possible; it is not written by the editorial staff nor does it necessarily reflect its views. Anyone unsure about getting a tattoo has undoubtedly waffled about precisely what they'll get or if they're even comfortable with having something on their body that'll last a lifetime. Not to mention,… READ THE REST