A Sinister Way to Beat Multifactor Authentication Is on the Rise

Lapsus$ and the group behind the SolarWinds hack have utilized prompt bombing to defeat weaker MFA protections in recent months...

A $320 Million Crypto Hack Sends the DeFi World Reeling

Plus: News Corp gets hacked, UK snacks ransomware, and more of the week's top security news...

Welcome to the Burner Phone Olympics

China’s Winter Games are overshadowed by human rights problems and overreaching state surveillance...

NSO Group Spyware Hits at Least 9 US State Department Phones

The incident lays bare how hollow the surveillance company’s reassurances about the limits of its hacking tools have always been...

How Google Geofence Warrants Helped Catch Capitol Rioters

A WIRED investigation has found 45 federal criminal cases that cite Google geolocation data to place suspects inside the US Capitol during the January 6 riot...

A New App Helps Iranians Hide Messages in Plain Sight

Nahoft uses encryption to turn chats into a random jumble of words, and it works even when the internet doesn’t...

38M Records Exposed Online—Including Contact-Tracing Info

Misconfigured Power Apps from Microsoft led to more than a thousand web apps accessible to anyone who found them...

DuckDuckGo’s Quest to Prove Online Privacy Is Possible

The company best known for its search engine is launching a new set of tools aimed at creating an “easy button” for protecting your data online...

The US Used the Patriot Act to Justify Logging Website Users

Plus: Better Twitter two-factor, a Spotify hack, and more of the week’s top security news...

Hackers Are Targeting the Covid-19 Vaccine ‘Cold Chain’

As vaccines await US approval, a sophisticated global phishing campaign has tried to harvest credentials from companies involved in their distribution...

This Notorious Botnet Has an Alarming New Trick

The hackers behind TrickBot have begun probing victim PCs for vulnerable firmware, which would let them persist on devices undetected...

Not Even William Barr Buys Trump’s Election Nonsense

The attorney general has long been one of the president’s chief apologists. Not this time...

How to Use Apple, Google, and Microsoft's Parental Controls

Each of the big three offers a wealth of options to limit screen time, find lost devices, and more...

A Hacker Is Threatening to Leak Patients' Therapy Notes

An extortionist has turned a breach of Finland's Vastaamo mental health services provider into a nightmare for victims...

Those ‘Doomsday Planes’ Have Nothing to Do With Trump's Covid-19 Test

Yes, two Boeing E-6B Mercury were flying last night. No, that's not because of the president's positive test...

Trump Pushed 11 False Claims About Voting in 8 Minutes During the Debate

The president’s assault on electoral integrity threatens to undermine the democratic process. We unpack each falsehood, mischaracterization, and lie...

The Safest Ways to Log In to Your Computer

Passwords, keyfobs, fingerprints—there are lots of ways to gain access to your laptop or desktop. Here are the best and most secure...

Porn Sites Still Won’t Take Down Nonconsensual Deepfakes

The videos are racking up millions of views. Meanwhile, for victims, the legal options aren’t keeping up with the technology...

Firefox Launched a New Android App to Lure Users From Chrome

Mozilla has rewritten the app to rely on its own infrastructure rather than Google’s. But will its privacy and UI tweaks convince people to make the switch?...

A New Botnet Is Covertly Targeting Millions of Servers

FritzFrog has been used to try and infiltrate government agencies, banks, telecom companies, and universities across the US and Europe...

Facebook Finally Cracks Down on QAnon

Plus: A top-secret iPod, Carnival ransomware, and more of the week’s top security news...

An Alexa Bug Could Have Exposed Your Voice History to Hackers

Amazon has patched the flaw, but its discovery underscores the importance of locking down your voice assistant interactions...

Flaws Could Have Exposed Cryptocurrency Exchanges to Hackers

Researchers found troubling bugs in open-source libraries used by financial institutions...

The NSA's Tips to Keep Your Phone From Tracking You

Plus: A Canon ransomware hack, a nasty Twitter bug, and more of the week's top security news...

Hackers Are Building an Army of Cheap Satellite Trackers

NyanSat is an open source ground station that lets you listen in on low-orbit transmissions for about $100 worth of gear...

How to Check Your Devices for Stalkerware

You deserve privacy. Here's how to check your phone, laptop, and online accounts to make sure no one's looking over your shoulder...

Julian Assange Faces New Conspiracy Allegations

Plus: Evil Corp hacking, an anti-encryption bill, and more of the week's top security news...

How Thousands of Misplaced Emails Took Over This Engineer's Inbox

Kenton Varda gets dozens of messages a day from Spanish-speakers around the world, all thanks to a Gmail address he registered 16 years ago...

How To Stop Instagram From Tracking Everything You Do

Though the Facebook-owned app doesn't give users complete control, there are ways to limit the data it collects and the types of ads you see...

‘Nonlethal’ Anti-Protest Weapons Can Cause Serious Harm

Rubber bullets and tear gas are billed as relatively safe. They're anything but...

Google Sees State-Sponsored Hackers Ramping Up Coronavirus Attacks

More than 12 government-backed groups are using the pandemic as cover for digital reconnaissance and espionage, according to a new report...

How Apple and Google's Social Distancing Maps Work

New tools from the tech giants shows the dramatic impact of sheltering in place, using location data from phones like yours...

Warren Pledges to Fight Disinformation, but Her Arsenal Is Limited

When it comes to stopping the spread of false information in the 2020 election, everyone is at the mercy of Big Tech...

Donald Trump's 'National Security' Impeachment Defense Is a Red Herring

The president’s cry-wolf strategy is straight from Richard Nixon’s playbook...

Facebook Revamps Its Privacy Checkup Feature in Time for CES

Forget Portal. This year, Facebook is marketing itself as a privacy crusader...

Mueller Makes It Clear: Trump Was Worse Than a 'Useful Idiot'

The special counsel's report exposes the extent to which not just Russia but Donald Trump's own associates grifted the president...

Watch Hackers Sabotage an Industrial Robot Arm

Researchers were able to take control of a 220-pound robotic arm to damage the products it manufactures---or the person that operates it. The post Watch Hackers Sabotage an Industrial Robot Arm appeared first on WIRED...

Securing Driverless Cars From Hackers Is Hard. Ask the Ex-Uber Guy Who Protects Them

In his Uber exit interview, top car hacker Charlie Miller warns of the dangers of insecure autonomous vehicles. The post Securing Driverless Cars From Hackers Is Hard. Ask the Ex-Uber Guy Who Protects Them appeared first on WIRED...

Asian Americans Raise Alarm Over ‘Chilling Effects’ of Section 702 Surveillance Program

More than 60 groups advocating for Asian American and Pacific Islander communities are pushing the US Congress to reform the Section 702 surveillance program as Senate leaders move to renew it...

Police Use of Face Recognition Is Sweeping the UK

Face recognition technology has been controversial for years. Cops in the UK are drastically increasing the amount they use it...

Elon Musk Mocked Ukraine, and Russian Trolls Went Wild

Inauthentic accounts on X flocked to its owner’s post about Ukrainian president Vlodymr Zelensky, hailing “Comrade Musk” and boosting pro-Russia propaganda...

Apple, Microsoft, and Google Just Fixed Multiple Zero-Day Flaws

Plus: Mozilla patches 10 Firefox bugs, Cisco fixes a vulnerability with a rare maximum severity score, and SAP releases updates to stamp out three highly critical flaws...

US Justice Department Urged to Investigate Gunshot Detector Purchases

A civil liberties group has asked the DOJ to investigate deployment of the ShotSpotter gunfire-detection system, which research shows is often installed in predominantly Black neighborhoods...

Chinese Spies Infected Dozens of Networks With Thumb Drive Malware

Security researchers found USB-based Sogu espionage malware spreading within African operations of European and US firms...

The Comedy of Errors That Let China-Backed Hackers Steal Microsoft’s Signing Key

After leaving many questions unanswered, Microsoft explains in a new postmortem the series of slipups that allowed attackers to steal and abuse a valuable cryptographic key...

The War on Passwords Enters a Chaotic New Phase

The transition from traditional logins to cryptographic passkeys is getting messy. But don’t worry—there’s a plan...

Mullvad VPN and Tor Project Create New Privacy-Focused Mullvad Browser

Mullvad Browser, a collaboration between the nonprofit and Mullvad VPN, offers an anti-tracking browser designed to be used with a VPN...

Security News This Week: Ring Is in a Standoff With Hackers

Plus: A SpaceX supplier ransom, critical vulnerabilities in dozens of Android phones, and more...

This Is the New Leader of Russia's Infamous Sandworm Hacking Unit

Evgenii Serebriakov now runs the most aggressive hacking team of Russia’s GRU military spy agency. To Western intelligence, he’s a familiar face...

Batteries Are Ukraine’s Secret Weapon Against Russia

With Russia regularly knocking out Ukraine’s power grid, the country has turned to high-capacity batteries to keep it connected to the world—and itself...