U+D801 It's dismayingly easy to make an app that turns a smart-speaker into a password-stealing listening device and sneak it past the manufacturer's security checks Cory Doctorow
can-spam canned Spam was nearly dead, then it became an essential tool for crime and came roaring back Cory Doctorow
dragonfly 2.0 Unknown hackers have gained near-total control over some US power generation companies Cory Doctorow
Wordpress How a fishing guide's WordPress site became home to half a million fraudulent pages Andrea James
operation kingphisher Amnesty: hackers spent months building personas used to phish Qatari labor activists Cory Doctorow
such a fine line between clever and stupid It turns out that halfway clever phishing attacks really, really work Cory Doctorow
something you have 12 days of two-factor authentication: this Xmas, give yourself the gift of opsec Cory Doctorow
wire-wire Researchers learn about wire-fraud scam after Nigerian scammers infect themselves with their own malware Cory Doctorow
Kazakhstan EFF and partners reveal Kazakh government phished journalists, opposition politicians Cory Doctorow
protection from rackets Security-conscious darkweb crime marketplaces institute world-leading authentication practices Cory Doctorow
java Spear phishers with suspected ties to Russian government spoof fake EFF domain, attack White House Cory Doctorow
