Tagged: security

web of trust logo

Web of Trust selling user browsing history

Add-on companies are selling the browsing history of millions of users to third-parties according to a report that aired on German national TV. Reporters of Panorama managed to gain access to a large data collection that contained the browsing history of roughly 3 million German Internet users. The data was collected by companies that produce browser extensions for various popular browsers such as Chrome...

linux logo

Critical Linux bug is under active exploit

A serious vulnerability that has been present for nine years in virtually all versions of the Linux operating system is under active exploit, according to researchers who are advising users to install a patch as soon as possible. While CVE-2016-5195, as the bug is cataloged, amounts to a mere privilege-escalation vulnerability rather than a more serious code-execution vulnerability, there are several reasons many researchers...

facebook logo

Facebook cookie fight isn’t finished

A ruling to protect German WhatsApp users’ data from Facebook suggests that the EU bloc will not back down on protecting consumers’ data privacy, despite an earlier win by Facebook in a Belgian appeal case. This summer, the Brussels Court of Appeals decided to reverse an earlier ruling restricting Facebook from tracking non-Facebook users in Belgium through the use of cookies. The new ruling...

linux logo

Linux kernel security needs an overhaul

The Linux kernel today faces an unprecedented safety crisis. Much like when Ralph Nader famously told the American public that their cars were “unsafe at any speed” back in 1965, numerous security developers told the 2016 Linux Security Summit in Toronto that the operating system needs a total rethink to keep it fit for purpose. No longer the niche concern of years past, Linux...

firefox logo

Mozilla will fix weakness in certificates that also affected Tor

Mozilla officials say they’ll release a Firefox update on Tuesday that fixes the same cross-platform, malicious code-execution vulnerability patched Friday in the Tor browser. The vulnerability allows an attacker who has a man-in-the-middle position and is able to obtain a forged certificate to impersonate Mozilla servers, Tor officials warned in an advisory. From there, the attacker could deliver a malicious update for NoScript or...

uniy id logo

UnifyID wants to bury the password once and for all

The old-fashioned password gets little respect from hackers these days. In fact, it’s barely a speed bump for them to get past. The hacker can find your password or even the answers to your “security” questions for sale on the internet black market. UnifyID, a participant in this year’s TechCrunch Disrupt SF Battlefield competition, sees a system that’s hopelessly broken — and they think...

google logo

Google Play still tracks you with the Location permission off

Google, it seems, is very, very interested in knowing where you are at all times. Users have reported battery life issues with the latest Android build, with many pointing the finger at Google Play – Google’s app store – and its persistent, almost obsessive need to check where you are. Amid complaints that Google Play is always switching on GPS, it appears Google has...

android logo

Google fixes two serious Android security flaws

Google’s mobile security team has definitely been busy cleaning house this week. The company has released an Android update that closes two security holes that could pose a major threat if intruders found a way to exploit them. The first was only designed for “research purposes” and would only have been malicious if modified, Google tells Ars Technica, but it wouldn’t have been hard...

securing password

How secure is my password?

21st century chaos fills our lives with distractions, flashing lights, reminders, leaving many yearning to simplify aspects of our lives – but passwords should not be included in this. Taking a serious look at how you set up your password can make the difference between a strong barrier to your accounts or a paper thin wall that easily hacked. If your password doesn’t look...

dropbox logo

Dropbox employee’s password reuse led to theft of 60M+ user credentials

Dropbox disclosed earlier this week that a large chunk of its users’ credentials obtained in 2012 was floating around on the dark web. But that number may have been much higher than we originally thought. Credentials for more than 60 million accounts were taken, as first reported by Motherboard and confirmed by TechCrunch sources. The revelation of a password breach at Dropbox is an evolution of...