The Peculiar Ransomware Piggybacking Off of China’s Big Hack

DearCry is the first attack to use the same Microsoft Exchange vulnerabilities, but its lack of sophistication lessens the threat...

A Homecoming Queen Was Arrested for Alleged Vote Hacking

Plus: A mysterious zero-day spree, a high-profile hacker indictment, and more of the week’s top security news...

A SpaceX Engineer's Dark Web Insider Trading Sparks SEC First

“MillionaireMike” allegedly ran a stock tip scam that earned him $27,000 in bitcoin payments...

Facebook's ‘Red Team X’ Hunts Bugs Outside the Social Network

The internal hacking team has spent the last year looking for vulnerabilities in the products the company uses, which could in turn make the whole internet safer...

Apple Bent the Rules for Russia. Other Nations Will Take Note

Russian iPhone buyers will soon be prompted to install software developed in that country, setting a precedent that other authoritarian governments may follow...

Foreign Meddling Flooded the 2020 Election—but Not Hackers

A new ODNI report shows how extensive Russian and Iranian influence operations were, but it doesn’t mention a single hack-and-leak incident...

The UK Is Secretly Testing a Controversial Web Snooping Tool

The country passed its Investigatory Powers Act in 2016. Now, its building what could be the most powerful data collection system used by any democratic nation...

Hackers Accessed Security Cameras Inside Tesla and Beyond

Plus: A Molson-Coors hack, Github controversy, and more of the week's top security news...

How to Export Your Passwords From LastPass

The popular security service is severely limiting its free tier starting March 16. If you’d like to move your passwords to another manager, here’s how...

Netflix's Password-Sharing Crackdown Has a Silver Lining

The streaming service is making account owners enter two-factor codes in a limited test. That's … actually not so bad...

A Bird-Feed Seller Beat a Chess Master. Then It Got Ugly

Twitch and YouTube chess star Levy Rozman has faced over a week of sustained harassment after calling out an alleged cheater...

With Spectre Still Lurking, Google Looks to Protect the Web

To show how browsers can guard against the speculative execution bug, Google security researchers have shown how an attack would work...

It’s Open Season for Microsoft Exchange Server Hacks

A patch for the vulnerabilities China exploited has been released. Now, criminal groups are going to reverse engineer it—if they haven’t already...

‘Retaliation’ for Russia's SolarWinds Spying Isn't the Answer

It will be hard pointing to a specific line the Kremlin crossed that the US hasn't crossed as well...

The Accellion Breach Keeps Getting Worse—and More Expensive

What started as a few vulnerabilities in firewall equipment has snowballed into a global extortion spree...

Privacy-First Browser Brave Is Launching a Search Engine

Unlike Google, Brave Search won’t track or profile people who use it...

How to Tell Which Emails Quietly Track You

Your emails know more about you than you might think, like when you open them or when you forward them to others. But you can reclaim your privacy...

Utah's ‘Porn Filter’ Law Passes the State Legislature

Plus: An iOS 14 jailbreak is out, Solarwinds details emerge, and more of the week's top security news...

Chinese Hacking Spree Hit an ‘Astronomical’ Number of Victims

A single group appears to have infiltrated tens of thousands of Microsoft Exchange servers in an ongoing onslaught...

McAfee Is Indicted for Altcoin Pump-and-Dumps and ICO Schemes

The 75-year-old antivirus entrepreneur faces up to 80 years in prison if convicted...

China’s and Russia’s Spying Sprees Will Take Years to Unpack

The full extent of the SolarWinds hack and Hafnium’s attack on Microsoft Exchange Server may never be known...

Thousands of Android and iOS Apps Leak Data From the Cloud

It's the digital equivalent of leaving your windows or doors open when you leave the house—and in some cases, leaving them open all the time...

Gab's CTO Introduced a Critical Vulnerability to the Site

A review of the open source code shows an account under the executive's name made a mistake that could lead to the kind of breach reported this weekend...

Twitch's First Transparency Report Is Here—and Long Overdue

The decade-old streaming platform has for the first time detailed its efforts to safeguard its user base in one place...

Microsoft's Dream of Decentralized IDs Enters the Real World

The company will launch a public preview of its identification platform this spring—and has already tested it at the UK's National Health Service...

2034, Part VI: Crossing the Red Line

“Eventually, the Americans would find them. But by then it would be too late.”...

What Did I Just Read? A Conversation With the Authors of '2034'

Elliot Ackerman and Admiral James Stavridis discuss their inspirations, personal experiences, and what keeps them up at night...

What Life Is Like Under Myanmar's Internet Shutdown

One couple living in Yangon explain the impact of the military coup's terrifying censorship measures...

Far-Right Platform Gab Has Been Hacked—Including Private Data

The transparency group DDoSecrets says it will make the 70 GB of passwords, private posts, and more available to researchers, journalists, and social scientists...

The SolarWinds Body Count Now Includes NASA and the FAA

Plus: Firefox blocks more tracking, how to fight a robodog, and more of the week’s top security news...

Clubhouse's Security and Privacy Lag Behind Its Huge Growth

The platform has promised to do better after a string of incidents. But the hardest part might be managing user expectations...

Hackers Tied to Russia's GRU Targeted the US Grid for Years

A Sandworm-adjacent group has successfully breached US critical infrastructure a handful of times, according to new findings from the security firm Dragos...

2034, Part V: Sailing Into Darkness

“Somewhere in that black hole was the Chinese fleet. She would be expected to find and destroy it.”...

The Woman Bulldozing Video Games’ Toughest DRM

For Empress, cracking titles like Red Dead Redemption 2 and Immortals Fenyx Rising is more than a pastime. It's a mission...

China Hijacked an NSA Hacking Tool—and Used It for Years

The hackers used the agency’s EpMe exploit to attack Windows devices years before the Shadow Brokers leaked the agency’s zero-day arsenal online...

A Trippy Visualization Charts the Internet's Growth

In 2003, Barrett Lyon created a map of the internet. In 2021, he did it again—and showed just how quickly it's expanded...

Sites Have a Sneaky New Way to Track You Across the Web

Plus: A LastPass rate change, Clubhouse concerns, and more of the week's top security news...

Apple Offers Its Closest Look Yet at iOS and MacOS Security

In its latest Platform Security Guide, Cupertino raised the curtain on the critical features that protect against hackers...

Feds Indict North Korean Hackers for Years of Heists

The three men are allegedly part of a group that tried to steal $1.3 billion in an extended—and ongoing—cybercrime spree...

Parler Says It’s Back

The platform was kicked off Amazon’s servers. Now it says it no longer relies on “Big Tech” for its infrastructure...

Malware Is Now Targeting Apple’s New M1 Processor

Two distinct strains of malware have already adjusted to the new silicon just months after its debut...

How to Avoid Phishing Emails and Scams

It's is a bigger threat than ever. Here are some ways you can defend yourself...

2034, Part IV: The Spratly Islands Ambush

“In a thousand years America won’t be remembered as a country, but simply as a fleeting moment.”...

France Ties Russia's Sandworm to a Multiyear Hacking Spree

A French security agency warns that the destructively minded group has exploited an IT monitoring tool from Centreon...

The Untold History of America’s Zero-Day Market

The lucrative business of dealing in code vulnerabilities is central to espionage and war planning, which is why brokers never spoke about it—until now...

A Billion-Dollar Dark Web Crime Lord Calls It Quits

The “big hack” redux, riot planning on Facebook, and more of the week’s top security news...

A Windows Defender Flaw Lurked Undetected for 12 Years

Microsoft has finally patched the bug in its antivirus program after researchers spotted it last fall...

A Barcode Scanner App With Millions of Downloads Goes Rogue

After an update in December, the app began infecting Android devices, bombarding users with ads on their default browser...

Cyberpunk 2077 Maker Was Hit With Ransomware—and Won't Pay Up

CD Projekt Red's list of woes gets longer, as hackers claim to have stolen the source code for their most popular games...

Covid-19 Vaccine Scams Spread Under Facebook's Watch

Don’t use an iTunes gift card to purchase doses of the vaccine online...