Sneaky Mac Malware Is Posing as Flash Downloads

Plus: OnlyFans pirates, a nasty Netgear bug, and more of the week's top security news...

A Report Blames ‘CIA Failures’ for the Agency's Worst Hack

A series of WikiLeaks disclosures that exposed a trove of the intelligence organization's secrets could have been avoided, a task force found...

Facebook and Twitter Want to Keep the Justice System Skewed Against Defendants

Their CEOs have pledged support for reform amid the George Floyd protests—while their lawyers are fighting to preserve law enforcement’s advantage in court...

Bot Mafias Have Wreaked Havoc in 'World of Warcraft Classic'

Blizzard has suspended or closed over 74,000 accounts in the last month, as bots have upended the game's economy...

Zoom Reverses Course and Promises End-to-End Encryption for All Users

The videoconferencing platform had previously said that only paid accounts would get the feature—a move privacy advocates roundly decried...

Body Cameras Haven't Stopped Police Brutality. Here's Why

Amid worldwide protests over racism and police violence, lawmakers are once again turning to the devices as a tool for reform...

The Russian Disinfo Operation You Never Heard About

The campaign known as Secondary Infektion appears to be a distinct effort from the meddling of the IRA and GRU—and it went undetected for years...

Ripple20 Bugs Put Hundreds of Millions of IoT Devices at Risk

The so-called Ripple20 vulnerabilities affect equipment found in data centers, power grids, and more...

Former eBay Execs Allegedly Made Life Hell for Critics

Surveillance. Harassment. A live cockroach delivery. US attorneys have charged six former eBay workers in association with an outrageous cyberstalking campaign...

Dating Apps Exposed 845 GB of Explicit Photos, Chats, and More

3somes, Gay Daddy Bear, and Herpes Dating are among the nine services that leaked the data of hundreds of thousands of users...

How To Stop Instagram From Tracking Everything You Do

Though the Facebook-owned app doesn't give users complete control, there are ways to limit the data it collects and the types of ads you see...

How to Clean Up Your Old Posts on Twitter, Facebook, and Instagram

These tips and tools will help you scrub your social media profiles clean, or give you a fresh start without giving up your username and followers...

Zoom Shut Down US-Based Activists at China's Request

Hackers for hire, a particularly ignominious phishing campaign, and more of the week’s top security news...

Coder-Turned-Kingpin Paul Le Roux Gets His Comeuppance

The programmer who became a flagrant drug lord and weapons trafficker was sentenced in New York City to 25 years in prison...

Researchers Expose a New Vulnerability in Intel's CPUs

The Software Guard eXtension is supposed to protect encryption keys and other sensitive data. But this isn't the first time it's been defeated...

Spies Can Eavesdrop by Watching a Light Bulb's Vibrations

The so-called lamphone technique allows for real-time listening in on a room that's hundreds of feet away...

Amazon Won’t Let Police Use Its Facial-Recognition Tech for One Year

Amid nationwide protests over police brutality, the company is stopping law enforcement from using its most controversial product...

Android 11 Will Help You Rein In Zombie App Permissions

The latest update to Google's operating system has a host of privacy and security improvements...

Georgia’s Failure Shows How Not to Run an Election in the Pandemic

Limiting in-person polling sites makes it both harder to vote and more dangerous...

IoT Security Is a Mess. Privacy 'Nutrition' Labels Could Help

Just like with foods that display health information the package, researchers are exploring a tool that details how connected devices manage data...

How Covid-19 Contact Tracing Works on Your Phone

Developers are working on track-and-trace systems to keep infection levels low. The apps aren't here yet, but here's what they do—and how you can enable them...

China and Iran Tried to Hack the Biden and Trump Campaigns

Plus: An iOS zero day, surveillance planes, and more of the week's top security news...

The Police's Military Tactics Turn Peaceful Protests Violent

Research shows that calm and negotiation, not excessive force, reduces damage. So why are officers still turning to tear gas?...

Weed Sales on the Dark Web Surged Early in the Pandemic

Research shows that as Covid-19 lockdowns spread, people turned to internet dealers for their pot fix...

Games Don't Do Enough to Combat Toxicity at Launch

Riot Games has cutting-edge moderation tools at its disposal. Few of them are present in Valorant, which launched this week...

Zoom's End-to-End Encryption Will Be for Paying Customers Only

The videoconferencing company says it wants to be able to work with law enforcement to catch bad actors on its platform...

The Pentagon’s Hand-Me-Downs Helped Militarize Police. Here’s How

Over several decades, the 1033 program has shipped over $7.4 billion of Defense Department property to more than 8,000 law enforcement agencies...

‘Nonlethal’ Anti-Protest Weapons Can Cause Serious Harm

Rubber bullets and tear gas are billed as relatively safe. They're anything but...

Facebook 'Manage Activity' Is a Long Overdue Privacy Feature

The new Manage Activity feature will let you archive and bulk delete posts for the first time...

This Bot Hunts Software Bugs for the Pentagon

Mayhem emerged from a 2016 government-sponsored contest at a Las Vegas casino hotel. Now it's used by the military...

This $350 "Anti-5G" Device Is Apparently Just a USB Stick

Plus: A LiveJournal hack, Qatar's contact-tracing privacy failure, and more of the week's top security news...

NSA: Russia's Sandworm Hackers Have Hijacked Mail Servers

In a rare public warning, the US spy agency says the notorious arm of Russian military intelligence is targeting a known vulnerability in Exim...

Google Chrome Is Getting a Bunch of New Privacy Features

The next version of the browser will be more secure than ever. Here’s what you need to know...

Shadowserver, an Internet Guardian, Finds a Lifeline

Ten weeks ago, Shadowserver's main source of funding dried up. Now it's back on level footing...

State-Based Contact Tracing Apps Could Be a Mess

With no nationwide Covid-19 notification software in sight, security and interoperability issues loom large...

Trump's New Intelligence Chief Spells Trouble

John Ratcliffe is the least-qualified director of national intelligence in history—and a staunch partisan as well...

Don't Be Fooled by Covid-19 Contact-Tracing Scams

Fraudsters have found yet another way to take advantage of the pandemic...

The DHS Prepares for Attacks Fueled by 5G Conspiracy Theories

The claim that 5G can spread the coronavirus has led to dozens of cell-tower burnings in Europe. Now, the US telecom industry is on alert as well...

Now's The Perfect Time to Start Using a Password Manager

Time has no meaning, and we're all stuck in front of screens. You may as well secure your life while you're always online...

There's a Jailbreak Out for the Current Version of iOS

The Unc0ver tool works on all versions of iOS from 11 to 13.5, the current release...

Look Out for This Covid-19 Excel Phishing Scam

Plus: An iOS leak, an EasyJet breach, and more of the week's top security news...

5 Simple Ways to Make Your Gmail Inbox Safer

These built-in features definitely protect your data, but they can help keep your inbox tidy too...

The Hypocrisy of Mike Pompeo

In the few short years since his time in Congress, the secretary of state has conveniently reversed himself on multiple fronts...

Facebook Messenger Adds Safety Alerts—Even in Encrypted Chats

By using metadata instead of content to spot suspicious behavior, the social network can keep privacy intact...

ShinyHunters Is a Hacking Group on a Data Breach Spree

In the first two weeks of May, they've hit the dark web, hawking 200 million stolen records from over a dozen companies...

The Nigerian Fraudsters Ripping Off the Unemployment System

Security researchers have spotted the “Scattered Canary” group scamming vital benefits programs amid the Covid-19 pandemic...

Web Giants Scrambled to Head Off a Dangerous DDoS Technique

Firms like Google and Cloudflare raced to prevent an amplification attack that threatened to take down large portions of the internet with just a few hundred devices...

The FBI Backs Down Against Apple—Again

The agency cracked the Pensacola iPhones, but it still views Cupertino as a problem—even though it's easier to break into iPhones than it has been in years...

Cryptocurrency Hardware Wallets Can Get Hacked Too

New research shows vulnerabilities in popular cold-storage options that would have revealed their PINs...

Now Chrome Can Block Ads That Leach Power From Your CPU

Google developers have built a feature to help you avoid abusive ads. Here’s how to turn it on...