This week, a Turkish ‘hacking' group began kicking up a fuss on social media, claiming they had access to over 300 million iCloud accounts and would begin factory resetting 200 million iOS devices starting on the 7th of April. The hope was that this would scare Apple into paying up …
Read More »Wikileaks will give tech companies access to CIA exploits if patched within 90 days
It has been a couple of weeks since Wikileaks first dropped its Vault 7 leak, revealing plenty about the CIA's hacking and spying methods. Since then, tech companies have been scrambling to find the security holes so they can put out patches and it seems that Wikileaks is going to …
Read More »US charges two Russian hackers and two Russian spies over 2014 Yahoo hack
Over the last couple of years, Yahoo has suffered two major security breaches, affecting hundreds of millions of users. While the company didn't handle the situation very well at all, it does seem that the US authorities have tracked down the culprits behind at least one of the attacks, with the …
Read More »Apple, Samsung and Microsoft speak out on Vault 7 CIA leaks
In case you missed it last night or this morning, this week, WikiLeaks dropped the largest intelligence agency leak in history, dropping well over 8000 confidential CIA documents outlining the agency's illicit spying tactics amongst other activities. The first drop in a series of coming ‘Vault 7' leaks alleged that …
Read More »WikiLeaks’ Vault 7 dump puts the CIA in a glass cage, reveals operations and spyware tactics
This week, WikiLeaks dropped the largest intelligence agency leak in history with the release of 8761 confidential CIA documents, going over the agency's illicit activities. This is just the beginning too, with Julian Assange claiming there will be a series of additional leaks to follow. At the moment this operation …
Read More »A Cloudflare bug has exposed passwords and sensitive data, lots of sites affected
It looks like Cloudflare has been suffering from a bug recently, causing the passwords, cookies and tokens used to authenticate users by millions of sites to leak. Cloudflare is a security and performance tool that is used by 5.5 million websites, including big names like Reddit, Discord, Patreon and more. …
Read More »Microsoft forced to delay February Windows security patch
It looks like there won't be a ‘Patch Tuesday' for a little while as Microsoft has run into some ‘last minute issues; with its latest round of security fixes for Windows 10. As a result, patches are being withheld until mid March, at which point Microsoft will roll out a …
Read More »MacOS trojans are becoming more common place, new Word file exploit discovered
A new piece of malware that specifically targets Mac operating systems has been discovered. Found in an infected Word file, when launched on a MacOS machine, the file automatically triggers a macro which can download an encrypted payload and begin running it on the user's system. Anyone who's been interested …
Read More »Valve has patched yesterday’s alarming Steam XSS exploit
Update: Last night, a warning was sent out regarding a Steam XSS bug. This was a fairly alarming security flaw that could use Steam Community profile pages to inject malicious code and essentially hijack your account with access to comments, the Steam marketplace, your Steam inventory and more. Fortunately, once Valve …
Read More »Dangerous XSS exploit affecting Steam users
It looks like Steam users might want to be careful when browsing Steam as an XSS exploit has been discovered which can seriously affect account security. The issue was made public earlier today and can allow attackers to inject their own code, which could allow someone to hijack your Steam …
Read More »Denuvo anti-tamper drops the ball, reveals hidden developer messages
The Denuvo anti-tamper software company has taken another hit to its reputation over the weekend, where it was discovered that there was a leak in its private messaging system. That leak was discovered by hackers and lead to a number of messages from developers and the general public appearing online. …
Read More »Hacker leaks the iOS cracking tools that the FBI paid for
Last year, the FBI and Apple were embroiled in a legal battle over encryption after Apple refused to unlock an iPhone 5C at the center of an investigation. After it became clear that Apple wasn't going to budge, the FBI hired a firm known as Cellebrite to develop a tool …
Read More »Government committee criticises watchdogs over UK data breaches
The British government and its watchdogs are doing a poor job of protecting citizens and companies from online attacks, according to the public accounts committee. It also criticised a confusing system for reporting breaches, which painted an inconsistent picture of the current state of Britain's digital security. Despite cyber attacks …
Read More »Netgear speaks out on new vulnerabilities, firmware updates available for most devices
Update (02/02/17): Following on from our initial report on the new security vulnerabilities found in Netgear routers, the company got in touch with us to provide a fresh statement on the matter and clear a few things up. Recently, two new vulnerabilities were made public by security researcher TrustWave, making …
Read More »Forget your mother’s maiden name, Facebook is fixing password resets
Facebook is looking to end one of the biggest problems in web security: password recovery. To that end, it has announced a new way to recover your password for your Github account, which is successful could spell the end of secret questions, recovery emails and provide much greater security in …
Read More »LeakedSource owner reportedly raided, servers seized
LeakedSource, a for-profit database of hacks and security breaches has been taken down this week, leading to reports of an FBI raid, during which all servers are said to have been seized. News of the raid first broke last night and while the US authorities have yet to confirm or …
Read More »Windows 10 Creators Update will also boost security
We have been hearing a lot about the upcoming Windows 10 Creators update. It's set to bring native VR support for the Windows desktop, an all-new version of Paint and even some new gaming features. However, there is another important addition coming in April's update and that is the new …
Read More »Yahoo under investigation for failing to disclose major hacks
Over the last few years, Yahoo has suffered two major hacks affecting millions of its users. However, in both cases, the company kept quiet on the security breaches, all the while compromising the security of its users. Now, it looks like Yahoo may be held accountable for that as the …
Read More »Snooper’s Charter challenge fund reaches £50,000 in a week
The crowd funding effort by human rights group Liberty, has raised more than £50,000 in its first week since going online. So far more than 1,750 people have pledged their support, with one person giving as much as £5,000 towards the legal fund. Liberty's crowd funding campaign is designed to provide funding …
Read More »Some Intel Skylake and Kaby Lake CPUs are open to a USB debug exploit
It looks like current PCs based on specific Intel Skylake and Kaby Lake processors are vulnerable to a USB debugging exploit. Security researchers began openly discussing the vulnerability this week, which allows attackers to bypass security mechanisms and run malicious code via the USB debugging interface. This specifically affects Intel's …
Read More »Concerns arise over WhatsApp encryption weakness
WhatsApp has been trying to improve its stance as far as privacy and security go since last year, when the messaging service introduced end to end encryption. Unfortunately, it turns out that WhatsApp's encryption isn't keeping messages as secure as one would hope. Several months back, security researchers discovered a …
Read More »1.5 million ESEA accounts compromised after hack
If you are a serious Counter-Strike player, whether it be 1.6 or Global Offensive, then chances are you've come across the ESEA (Esports Entertainment Association) at some point. If you happened to be a member of the premium matchmaking service, then you may want to keep an eye out as …
Read More »The FTC goes after D-Link over poor security practises
It looks like D-Link has found itself in hot water with the Federal Trade Commission (FTC) this week as the US regulator has filed charges against D-Link for putting consumers' privacy and security at risk with its products. As part of the FTCs current initiative to ensure companies are taking …
Read More »Lithuania claims Russia regularly cyber-attacks its systems
Although it's generally accepted that all developed nations are constantly slinging digital warheads at each other – not to mention the bedroom hackers and hacktivists joining in for fun – it rarely feels too serious. In the case of Lithuania though, it's concerned about the barrage of Russian attacks it's …
Read More »Dubai police are now using predictive crime software
We may have touch screens and automated cars, but one aspect of Minority Report technology we haven't quite mastered yet, is pre-crime. Dubai is looking to lead the charge there though, with the introduction of new, predictive crime software, which claims to be able to predict where crimes are more …
Read More »British companies to face big fines if data breaches occur
Despite being inclined to have firms collect endless amounts of data on their customers, the British government does at least want them to protect it. Accepting a new EU law, known as the General Data Protection Regulation (GDPR), means that when introduced in 2018, British firms will be mandated to …
Read More »EFF’s full page ad begs tech firms to secure before Trump
The Electronic Frontier Foundation is worried about the state of privacy and net neutrality online, but it's really worried about it once Donald Trump comes to power in January next year. To try and get the jump on that, it's taken out a full page advert in Wired magazine to …
Read More »Netgear has fixed the major problem with Nighthawk routers
Earlier this month a bug was discovered in Netgear Nighthawk routers that left them vulnerable to hacks. While there was much concern about how widespread the vulnerability was, Netgear has now addressed the problem and is rolling out a firmware update worldwide. Models that were confirmed to be affected by the …
Read More »UK VPN usage explodes as Digital Economy Bill progresses
The use of virtual private networks (VPNs) has increased dramatically in the UK as the controversial Digital Economy Bill and Investigatory Powers Bill have progressed through parliament. In the case of some VPNs, UK customers have more than doubled, with many concerned for their privacy and access to content. The …
Read More »Verizon may back out of Yahoo buyout after massive hack revealed
Yahoo is facing a lot of scrutiny right now after the company revealed yet another massive hack to its customers. Earlier this year, Yahoo finally admitted to having 500 million user accounts compromised during an attack back in 2014 but it turns out that wasn't even the worst of it. …
Read More »