Hackers Got Past Windows Hello by Tricking a Webcam

The security researchers used infrared photos and third-party hardware to best Microsoft’s facial-recognition tech...

The SolarWinds Hackers Used an iOS Flaw to Compromise iPhones

Security researchers say the group exploited a zero-day in Apple’s operating system to target European government officials over LinkedIn...

Facebook Catches Iranian Spies Catfishing US Military Targets

The hackers posed as recruiters, journalists, and hospitality workers to lure their victims...

WhatsApp Has a Secure Fix for One of Its Biggest Drawbacks

Starting with a beta that launches today, you’ll no longer have to route all your messages through your smartphone...

Germany Is About to Block One of the Biggest Porn Sites

Regulators are trying to force adult sites to introduce age checks for users. Now one of the largest in the world faces a total block for refusing to do so...

Cuba’s Social Media Blackout Reflects an Alarming New Normal

In response to mass protests, the country has been blocking social media and communication platforms since Sunday—an increasingly common action worldwide...

The Everyday IT Tools That Can Offer ‘God Mode’ to Hackers

Attackers are increasingly attuned to the power and potential of remote management software...

A New System Is Helping Crack Down on Child Sex Abuse Images

There are 150 child sexual abuse laws around the world. Now, metadata is making it easier for countries to work together...

The Latest Pro-Trump Twitter Clone Leaks User Data on Day 1

Plus: A failed takedown in Russia, details on an FBI-sting encrypted phone, and more of the week's top security news...

An Office Phone Flaw Can’t Be Fixed by Cisco Alone

The company released a patch this week, but security researchers say the root of the problem is beyond its control—and symptomatic of a larger issue...

Europe Makes the Case to Ban Biometric Surveillance

Companies are racing to track everything about you. It could be a convenient way to reduce fraud—or seriously creepy and discriminatory...

Microsoft Keeps Failing to Patch a Critical Windows Bug

For the second time in a month, the company issued an update that doesn't fully address a severe security vulnerability in Windows...

The Unfixed Flaw at the Heart of REvil’s Ransomware Spree

Security researchers warned Kaseya about its IT management software in April, but the patches didn't come fast enough to avert last week's disaster...

Why the Password Isn't Dead Quite Yet

Everyone hates the old ways of authentication. But while change is closer than ever, it comes with its own drawbacks...

Amazon Echo Dots Store a Wealth of Data—Even After a Reset

Thinking about selling your smart speaker? Be aware that you can't completely delete personal content from the device...

How REvil Ransomware Took Out Thousands of Business at Once

More details have come to light as to how the notorious hacking group pulled off its unprecedented attack...

Do Not Stare Into the Crypto Orb

A PrintNightmare exploit, a VPN takedown, and more of the week's top security news...

A New Kind of Ransomware Tsunami Hits Hundreds of Companies

An apparent supply chain attack exploited Kaseya's IT management software to encrypt a "monumental" number of victims all at once...

Fancy Bear Is Trying to Brute-Force Hundreds of Networks

While SolarWinds rightly drew attention earlier this year, Moscow's Fancy Bear group has been on a password-guessing spree this whole time...

Windows 11's Security Push Leaves Scores of PCs Behind

The minimum hardware requirements for Microsoft’s next operating system will leave plenty of PCs stranded...

SolarWinds Hackers Continue Assault With New Microsoft Breach

The company says the Nobelium hacking group compromised a support agent's computer and levied brute-force attacks against some of its customers...

How to Make Sure Your Browser Extensions Are Safe

As useful as all those add-ons can be, don't get complacent when it comes to making sure they're also secure...

Hackers Are Erasing Western Digital Hard Drives Remotely

Amazon acquires Wickr, the Senate holds up CISA, and more of the week’s top security news...

What the Pentagon’s New UFO Report Reveals About Humankind

The document says less about the search for life in the universe, and more about our current cultural climate and distrust of expertise...

US Takedown of Iranian Media Sites Extends a Thorny Precedent

Free speech advocates raised concerns after the Justice Department seized more than 30 domains this week...

NFC Flaws Let Researchers Hack ATMs by Waving a Phone

Flaws in card reader technology let a security firm consultant wreak havoc with point-of-sale systems and more...

A Well-Meaning Feature Leaves Millions of Dell PCs Vulnerable

Flaws in a firmware security tool affect as many as 30 million desktops, laptops, and tablets...

John McAfee Dies in Spanish Prison After Extradition Order

The antivirus pioneer and alleged cryptocurrency scammer was 75 years old...

French Spyware Executives Are Indicted for Aiding Torture

The managers are accused of selling tech to Libya and Egypt that was used to identify activists, read private messages, and kidnap, torture, or kill them...

All the Ways Amazon Tracks You—and How to Stop It

The retail empire is obsessed with your data. But is the convenience worth your personal information?...

A Bug in the Android Google App Put Privacy at Risk

Plus: Airbnb's safety squad, a fake pharmacy crackdown, and more of the week's top security news...

A New Tool Wants to Save Open Source from Supply Chain Hacks

Sigstore will make code signing free and easy for software developers, providing an important first line of defense...

The Cl0p Bust Shows Exactly Why Ransomware Isn’t Going Away

Ukrainian authorities managed to make some high-profile arrests. But nothing’s going to change until Russia does the same...

DuckDuckGo’s Quest to Prove Online Privacy Is Possible

The company best known for its search engine is launching a new set of tools aimed at creating an “easy button” for protecting your data online...

Apple Says It's Time to Digitize Your ID, Ready or Not

Digital driver’s licenses have had a slow start in the US so far, but iOS 15 Wallet will give the nascent technology a serious push...

All the New Privacy Features Coming to iOS and macOS

Improvements designed to keep your email private, crack down on data stealing apps, and help you find lost devices are on their way...

Google Won't Kill the URL After All

Plus: A Colonial Pipeline update, inside details of the FBI's Anom caper, and more of the week's top security news...

What You Should Know About Voilà, the Latest Viral Selfie App

Before you use it to cartoonify your face, consider the risks to your data...

As Ransomware Demands Boom, Insurance Keeps Paying Out

While major carriers like AXA have backed away from covering ransoms, don't expect the industry at large to break the vicious cycle...

The FBI's Anom Stunt Rattles the Encryption Debate

The agency spent years running a secure phone network for criminals. So much for “going dark.”...

A Mystery Malware Stole 26 Million Passwords From Windows PCs

The credentials were part of a trove containing 1.2 terabytes of sensitive data extracted between 2018 and 2020...

Hackers Stole a Ton of EA Data—Including Valuable Source Code

The video game publisher confirmed the breach, which could be a boon to the shadowy world of cheat-makers...

How an Obscure Company Took Down Big Chunks of the Internet

You may not have heard of Fastly, but you felt its impact when sites didn’t load around the world Tuesday morning...

How to Turn Off Amazon Sidewalk

The company is enlisting your Echo and Ring devices into an internet-sharing mesh network starting Monday. It’s not too late to opt out...

Ransomware Hit Another Pipeline Firm—and 70GB of Data Leaked

LineStar Integrity Services was hacked around the same time as Colonial Pipeline, but radical transparency activists have brought the attack to light...

How to Protect Your Files From Ransomware

It's a growing threat for individual users and businesses alike—but there are ways to protect yourself...

The Safest Way to Store and Share Your Nudes

Listen, if you’re going to take them, follow these precautions so they don’t go anywhere you don’t intend them to...

The FBI’s Director Compares Ransomware Threat to 9/11

Plus, a Supreme Court decision on a controversial anti-hacking law, a WhatsApp walk-back, and more of the week’s top security news...

Microsoft’s Vote Tracking Software Clears a Major Hurdle

Hart InterCivic will be the first private vendor to partner with the company on using its open-source ElectionGuard system...

Ransomware Hits a Food Supply Giant—and Underscores Dire Risk

Hackers targeting JBS USA have disrupted meat processing facilities around the world, just one month after the Colonial Pipeline attack caused fuel distribution havoc...