Security

Security news, trends, analysis and practical advice

Digital Key encryption
internet security privacy

hidden door

How to deal with backdoors inserted or left by vendors

CSO looks at vendor backdoors, how they get into products, the challenges to finding these, mitigating the easily infected openings, and responding to this hardware, software, and IoT-based dilemma.

esmond kane

Blockchain can help secure medical devices, improve patient privacy

If implemented properly, blockchain can help secure medical devices and improve patient privacy, according to a top security pro at Partners Healthcare.

airplane cabin Airbus plane

iPad bomb plot allegedly led to electronic device ban on flights

A fake iPad stuffed with explosives allegedly contributed to the US and UK's ban on electronics in plane cabins.

encryption

Saks self-leaked customer data unencrypted, violating multiple rules

With so many retailers being impacted by cyber attacks, it’s easy to conclude that thieves are necessary for data breaches. Not necessarily. Saks last week made clear that it can breach itself quite efficiently.

WhatsApp (1)

UK official wants police access to WhatsApp messages

A senior U.K. official is asking that law enforcement be given access to encrypted messages on WhatsApp and similar services, a demand that is likely to fuel a debate over whether companies should create backdoors into their...

nordvpn

Get 72% off NordVPN Virtual Private Network Service For a Limited Time - Deal Alert

NordVPN has discounted their popular VPN software 72%. Use our link and see the discount applied when you click "buy now".

06 bank accounts atm

How to protect yourself from ATM crime

Banks like Wells Fargo are rolling out much better ATM security. Here's why it won't stop ATM theft.

video

CIA, WikiLeaks and Doctor Who?

CSO Online's Steve Ragan and Joan Goodchild chat about the hot security news of the week, including their take on the recent WikiLeaks revelations around the CIA, and how Cisco, Samsung and Apple have responded to the information.

p1200591

Apple: Macs and iPhones are safe from newly revealed CIA exploits

The Mac and iPhone exploits described in new documents attributed to the CIA were patched years ago, according to Apple.

Google Play

Google Play faces cat-and-mouse game with Android malware

What’s the best way to avoid Android malware? Downloading all your apps from the Google Play store -- where software is vetted – is perhaps the best advice. But that doesn’t mean Google Play is perfect.

Digital Key encryption

To punish Symantec, Google may distrust a third of the web's SSL certificates

Google plans to remove the extended validation (EV) status of any such certificates issued by Symantec and force the company to replace all of its customers' certificates.

FBI

FBI director floats international framework on encrypted data access

The FBI director James Comey is suggesting an international approach to solving the encryption debate. He proposes that the U.S. might work with other countries on a “framework” for creating legal access to encrypted tech devices.

161214 apple newyork

Leaked iCloud credentials came from third parties, Apple says

The iCloud credentials that the Turkish Crime Family hacker group claims to have weren't obtained through a breach of the Apple's services.

android security

Most Android devices lack latest security patches

Nearly three-quarters of Android devices on the five biggest U.S. carriers are running on security patches that are at least two months old, putting them at greater risk of being hacked.

android security danger

Google: Half of Android devices haven’t been patched in a year or more

Google acknowledged that half of all Android devices had not received a security update in the past year, but the company is working to streamline the patching process.

21394517746 9a77570fae o

Newly leaked documents show low-level CIA Mac and iPhone hacks

The CIA has had tools to infect Apple Mac computers by connecting malicious Thunderbolt Ethernet adapters to them since 2012, according to new documents purported to be from the agency and published by WikiLeaks.

FCC building in Washington

Senate votes to kill FCC's broadband privacy rules

The U.S. Senate has voted to kill broadband provider privacy regulations prohibiting them from selling customers' web-browsing histories and other data without permission.

NSA headquarters

Snowden's ex-boss offers advice on stopping insider threats

Steven Bay, a former defense contractor, knows a thing or two about insider threats. For a brief period, he was the boss of Edward Snowden, the famous leaker who stole sensitive files from the National Security Agency.

Load More