TSA’s Terrorist Watch List Comes for Amtrak Passengers

Plus: Microsoft seizes Russian GRU domains, Cash App’s data breach, and Obama’s disinfo admission...

How Russia's Invasion Triggered a US Crackdown on Its Hackers

The Biden White House is using “all of the levers of national power” to counter—or preempt—cyberattacks by Russia’s most dangerous hacker groups...

WatchGuard Didn't Explicitly Disclose a Flaw Exploited by Hackers

The security vendor kept a critical vulnerability in its firewall appliances quiet even as it was under attack from a Russian hacking group...

The Senate Bill That Has Big Tech Scared

The proposal would stop the biggest platforms from giving themselves an advantage over the little guys. Who's afraid of a little competition?...

The Bitcoin Bust That Took Down the Web’s Biggest Child Abuse Site

They thought their payments were untraceable. They couldn’t have been more wrong. The untold story of the case that shredded the myth of Bitcoin’s anonymity...

Meta Tries to Break the End-to-End Encryption Deadlock

A new report commissioned by Meta aims to redefine comprehensive encryption as essential to protecting human rights...

Europe Is Building a Huge International Facial Recognition System

Lawmakers advance proposals to let police forces across the EU link their photo databases—which include millions of pictures of people’s faces...

Shutdown of Russia's Hydra Market Disrupts a Crypto-Crime ATM

More than just a market for illegal drugs, the dark-web site allowed criminals to launder or cash out hundreds of millions in stolen cryptocurrencies...

NFTs Are a Privacy and Security Nightmare

The blockchain isn’t as “anonymous” as you might think...

How Explosions Actually Kill

Wars often spark misinformation about the nature of blast trauma. Russia's unprovoked bombardment of Ukraine is no different...

Blockchains Have a ‘Bridge’ Problem, and Hackers Know It

Blockchain bridges are a crucial piece of the cryptocurrency ecosystem, which makes them prime targets for attacks...

Fake Cops Scammed Apple and Meta to Get User Data

Plus: Lapsus$ teens hit with charges, Wyze's security screwup, and Russia's cyber rampage...

Russia Inches Toward Its Splinternet Dream

For years, the country has been trying to create its own sovereign internet—a goal given new impetus by the backlash to its invasion of Ukraine...

The Last Cell Tower in Mariupol

For weeks, a lone mobile base station allowed thousands in the besieged Ukrainian city to stay connected—until Russian troops arrived...

A Sinister Way to Beat Multifactor Authentication Is on the Rise

Lapsus$ and the group behind the SolarWinds hack have utilized prompt bombing to defeat weaker MFA protections in recent months...

Researchers Used a Decommissioned Satellite to Broadcast Hacker TV

What happens when an old satellite is no longer in use but can still broadcast? Hacker shenanigans, that's what...

Forcing WhatsApp and iMessage to Work Together Is Doomed to Fail

Europe’s Digital Markets Act requires interoperability between popular messaging apps. But experts warn encryption could be compromised...

Stop Tracking Your Loved Ones

Tracking apps hijack your psyche. Here's how to regain control...

New Lapsus$ Hack Documents Make Okta’s Response Look More Bizarre

Documents shed some light on how Okta and its subprocessor Sitel reacted to a breach, but they don’t explain the apparent lack of urgency...

The Future of Digital Cash Is Not on the Blockchain

If you want the privacy of paper money, you need something that leaves no paper trail...

Hunt for Lapsus$ Hackers Leads to a British Teen

Plus: New details emerge about Russian hacks and hackers as the US warns of potential new attacks...

The Fragile Open Source Ecosystem Isn't Ready for 'Protestware'

A recent uptick in disruptions to open source software, including incidents aimed at objecting to Russia's war in Ukraine, have left the community on edge...

Feds Allege Destructive Russian Hackers Targeted US Refineries

The Justice Department unsealed indictments against four alleged Russian hackers said to have targeted US energy infrastructure for nearly a decade...

A Mysterious Satellite Hack Has Victims Far Beyond Ukraine

The biggest hack since Russia’s war began knocked thousands of people offline. The spillover extends deep into Europe...

Putin and Biden Must Choose: How Does Russia Want to Lose?

As Russia's failures mount in its war against Ukraine, can Biden prevent an isolated Putin from doing the unthinkable?...

The Third-Party Okta Hack Leaves Customers Scrambling

Authentication firm Okta's statements on the Lapsus$ breach fails to answer key questions...

'This Is Really, Really Bad': Lapsus$ Gang Claims Okta Hack

Lapsus$ leaking Microsoft source code would be bad enough. Breaching Okta could be much, much worse...

The Enduring Danger of Russia’s Cluster Bombs in Ukraine

A brief history and the ramifications of cluster bombs, history’s most indiscriminate weapon...

How to Limit Who Can Contact You on Twitter

Lock down your account to tweet in peace or take the guardrails off to court controversy...

TSA’s First Crack at Guarding Pipelines From Hackers Falls Short

Plus: Anonymous dedicates a hack to Hillary Clinton, Google researchers expose Exotic Lily, and more...

A Developer Altered Open Source Software to Wipe Files in Russia

The author of a popular application pushed out an update containing malicious code in an effort to sabotage computers in the country...

Conti Leaks Reveal the Ransomware Group’s Links to Russia

Members of the Conti ransomware group may act in Russia’s interest, but their links to the FSB and Cozy Bear hackers appear ad hoc...

Death of the Password? FIDO Alliance Reveals Its New Plan

After a decade of work, the FIDO Alliance says it’s found the missing piece in the bridge to a password-free future...

Conti Leak: A Ransomware Gang's Chats Expose Its Crypto Plans

Leaked files from cybercrime group Conti show it started building a crypto payment platform, a social network—and even had plans for a casino...

The Workaday Life of the World’s Most Dangerous Ransomware Gang

A Ukrainian researcher leaked 60,000 messages from inside the Conti ransomware group. This is what they reveal...

The Lapsus$ Hacking Group Is Off to a Chaotic Start

Telegram polls. Unusual demands. The latest extortion gang is on an unorthodox rampage...

Russia Wants to Label Meta an ‘Extremist Organization’

Plus: A satellite hack, ransomware extradition, and more of the week’s top security news...

NFTs Don’t Work the Way You Might Think They Do

We bust the biggest misconceptions about what "minting" actually means...

Beware the Never-Ending Disinformation Emergency

YouTube still draws a hard line on Trump’s rigged election claims. Two years later, it doesn't hold up...

Chinese Spies Hacked a Livestock App to Breach US State Networks

Vulnerabilities in animal tracking software USAHERDS and Log4j gave the notorious APT41 group a foothold in multiple government systems...

War Is Calling Crypto’s ‘Neutrality’ Into Question

War in Ukraine and Western sanctions against Russia have made cryptocurrency a hot potato for international politics...

Critical Bugs Expose Hundreds of Thousands of Medical Devices

The so-called Access:7 vulnerabilities are the latest high-profile IoT security fumble...

How Police Abuse Phone Data to Persecute LGBTQ People

In many parts of the world, law enforcement uses WhatsApp chats, text messages, and photos from confiscated phones as "evidence" against persecuted groups...

A Major Internet Backbone Company Cuts Off Russia

Plus: A ransomware gang leak, an Nvidia hack, and more of the week's top security news...

Hacktivists Stoke Pandemonium Amid Russia’s War in Ukraine

A wave of cyberattacks meant to make a statement and particularly buoy Ukraine could have unintended consequences...

Hackers Find a New Way to Deliver Devastating DDoS Attacks

Cybercriminals are exploiting a fleet of more than 100,000 misconfigured servers to knock websites offline...

When War Struck, Ukraine Turned to Telegram

As Russian troops surround Kyiv, millions of Ukrainians have relied on the messaging platform for government information...

Ice Cream Machine Hackers Sue McDonald's for $900 Million

Kytch alleges that the Golden Arches crushed its business—and left soft serve customers out in the cold...

How Ukraine's Internet Can Fend Off Russian Attacks

The besieged country's complex internet infrastructure has evolved to promote resiliency...

An ‘Unhinged’ Putin Threatens Dangerous Escalation in Ukraine

With no off-ramp in sight, Russia’s leader has put the country’s nuclear forces on alert...