U.S. Senators Urge VPN Ban for Federal Workers Over Spying
Wyden and Rubio are eyeing VPN services they say could be instruments of espionage for Russia and China.
The APT Name Game: How Grim Threat Actors Get Goofy Monikers
How do advanced persistent threat groups such as Double Secret Octopus and Anchor Panda get their ridiculous names?
Spy Campaign Spams Pro-Tibet Group With ExileRAT
Referencing the Dalai Lama, the spam campaign is targeting recipients of a mailing list run by the Central Tibetan Administration.
Chafer APT Takes Aim at Diplomats in Iran with Improved Custom Malware
The Remexi spyware has been improved and retooled.
U.S. Government Goes After North Korea’s Joanap Botnet
The Department of Justice is looking to dismantle the Joanap botnet, which has been built and controlled by North Korea-linked hackers since 2009.
Japan to Hunt Down Citizens’ Insecure IoT Devices
Japan will carry out a “survey” of 200 million deployed IoT devices, with white-hats trying to log into internet-discoverable devices using default credentials.
Feds Dismantle Dark Web Credentials Market
Meanwhile, authorities are aggressively going after former users of the Webstresser DDoS-for-hire service.
U.S. Gov Issues Urgent Warning of DNS Hijacking Attacks
An emergency directive from the Department of Homeland Security provides "required actions" for U.S. government agencies to prevent widespread DNS hijacking attacks.
Apple CEO Demands Federal Data Privacy Legislation
Apple CEO Tim Cook has called on the government to double down on data privacy regulation in 2019.
Millions of Oklahoma Gov Files Exposed by Wide-Open Server
The storage server was left open for about a week and exposed everything from sensitive FBI investigations to data related to patients with AIDS.
Judge: Law Enforcement Can’t Force Suspects to Unlock iPhones with FaceID
A ruling found that coercing suspects to open their phones using biometrics violates the fourth and fifth amendments.
U.S. Government Shutdown Leaves Dozens of .Gov Websites Vulnerable
As the shutdown continues into its 21st day, dozens of .gov websites haven't renewed their TLS certificates.
‘Unprecedented’ DNS Hijacking Attacks Linked to Iran
The attacks, targeting several countries to redirect traffic and harvest credentials, have been linked to Iran.
Snowden’s Attorney Urges Canada to Take in Whistleblower Helpers (Part Two)
Robert Tibbo discusses being pushed to leave Hong Kong under pressure and efforts made to the Canadian government to grant refugee status to the “Snowden refugees.”
Wide-Ranging German Doxxing Incident Hits Hundreds of Politicians
It's not clear why the data release wasn't noticed earlier.
Snowden’s Attorney Talks Govt Harrassment of Whistleblower Helpers (Part One)
Robert Tibbo discusses the challenges he and his clients face in Hong Kong as the government there targets both in a harassment campaign for aiding Edward Snowden.
EU Offers Bug Bounties For 14 Open Source Projects
As the bug bounty programs begin to roll out in January, security experts worry that the programs miss the mark on truly securing open source projects.
‘Snowden Refugee’ Has No Regrets for Helping Whistleblower
Woman who helped hide Edward Snowden faces uncertain future and says she has no regrets.
Top 2018 Security and Privacy Stories
The top cybersecurity and privacy trends that biggest impact in 2018.
2018: A Banner Year for Breaches
A look back at the blizzard of breaches that made up 2018.