Using the iPhone Recovery Key to Lock Owners Out of Their iPhones

This a good example of a security feature that can sometimes harm security: Apple introduced the optional recovery key in 2020 to protect users from online hackers. Users who turn on the recovery key, a unique 28-digit code, must provide it when they want to reset their Apple ID password. iPhone...

How to Make Sure You’re Not Accidentally Sharing Your Location

Keep your movements private...

Making the world a safer place with Microsoft Defender for individuals

Today’s sophisticated cyber threats require a modern approach to security. And this doesn’t apply only to enterprises or government entities—in recent years we’ve seen attacks increase exponentially against individuals. There are 921 password attacks every second.1 We’ve seen ransomware threats...

Advice for Personal Digital Security

ArsTechnicas Sean Gallagher has a two-part article on "securing your digital life." Its pretty good...

Help Others Be "Cyber Aware" This Festive Season—And All Year Round!

Are you tired of being the cybersecurity help desk for everyone you know? Are you frustrated with spending all your time securing your corporate environment, only to have to deal with the threat that snuck in through naive end-users? Are you new to security and wondering how you ended up here? Th...

Boost Your Personal Security With These Killer 2019 Black Friday and Cyber Monday Deals

If you're like most consumers, you're probably looking forward to the upcoming Black Friday and Cyber Monday sale events. Who wouldn't want to get all sorts of products and services at massive discounts? But while most consumers are typically eyeing personal gadgets and entertainment appliances,...

“Unbreakable” Smart Lock Tapplock Issues Critical Security Patch

Tapplock, a smart padlock that received positive reviews and media hype when it was released earlier this year, has issued a critical patch after researchers discovered several security issues enabling them to easily hack into and unlock the device. The $100 lock is Bluetooth-based and can be...

GSA Bounty: CSRF to change Account Security Keys on secure.login.gov

This may not be in scope and nor be eligible for bounty but I read this in your vulnerability disclosure policy: While not all of our services are in scope for our Bug Bounty program, we do welcome disclosures of vulnerabilities through our Vulnerability Disclosure Policy. We would encourage you ...

uTorrent Forums User List Stolen

BitTorrent has warned users of its uTorrent client to change their passwords after a third-party breach allowed hackers to walk off with a list of its forum users. “On June 6th, 2016, BitTorrent was made aware of a security issue involving the vendor which powers our forums,” the company said in ...

New Citadel Trojan Targets Your Password Managers

Unless we are a human supercomputer, remembering password is not an easy task and that too, if you have a different password for every different site. But luckily to make the whole process easy, there is a growing market for password managers which provides an extra layer of protection. Wait! Wai...

Citadel Variant Targets Password Managers

The Citadel Trojan has once again branched out beyond its roots as banking malware and is now targeting the master passwords guarding major password management products. Researchers from IBM Trusteer today said they’ve notified makers of the nexus Personal Security Client, Password Safe and KeePa...

srm - command-line program to delete files securely

srm is a secure replacement for rm1. Unlike the standard rm, it overwrites the data in the target files before unlinking them. This prevents command-line recovery of the data by examining the raw block device. It may also help frustrate physical examination of the disk, although it's unlikely tha...

Consumers Should Clean Up Their Act on Personal Security

The growing use of social networking sites is leaving PC inadvertently open to identity thieves warned Hugh Thompson, chief security strategist at People Security. Speaking at the RSA Europe Conference, Thompson said that people were unaware just how many clues they left for fraudsters. He said...

CVE-2002-0685

CVE-2002-0685 describes a heap-based buffer overflow in the message decoding function of the PGP Outlook Plug-in used by NAI PGP Desktop Security 7.0.4, Personal Security 7.0.3, and Freeware 7.0.3. A remote attacker could trigger this via a large, malformed email message to modify the heap and ga...

CVE-2001-1016

The CVE-2001-1016 entry affects PGP Corporate Desktop < 7.1 , Personal Security < 7.0.3 , Freeware < 7.0.3 , and E-Business Server

Mozilla personal security manager /tmp issues

Playing with /tmp a bit this morning I ran into the following issue in mozilla... with mozilla open root@linuxppc root fuser -n file /tmp/.nsmc-0-lock /tmp/.nsmc-0-lock: 3220 3223 3224 3226 3227 3228 3229 root@linuxppc root ps -ef | grep 3220 root 3220 1 0 12:42 ? 00:00:00 ./psm sh-2.05$ id...

Символьные линки personal security manager в Mozilla (symbolic links)

Проблема символьных линков при создании временного каталога...

ACROS-2000-04-06-1-PUB

=====BEGIN-ACROS-REPORT===== ========================================================================= ACROS Security Problem Report 2000-04-06-1-PUB ------------------------------------------------------------------------- Bypassing Warnings For Invalid SSL Certificates In Netscape Navigator...