Supermicro Bug Could Let 'Virtual USBs' Take Over Corporate Servers

A newly disclosed vulnerability in Supermicro hardware brings the threat of malicious USBs to corporate servers...

Cops Take Over a Botnet to Clear Malware Off Nearly a Million PCs

Attacking Iran, a web host data breach, and more of the week's top security news...

How Twitter CEO Jack Dorsey's Account Was Hacked

Like so many Twitter attacks lately, it was a SIM swap...

An Unprecedented iPhone Hack, a Wi-Fi Leg Implant, and More News

Catch up on the most important news from today in two minutes or less...

Mysterious iOS Attack Changes Everything We Know About iPhone Hacking

For two years, a handful of websites have indiscriminately hacked thousands of iPhones...

Everything We Know About the Capital One Hacking Case So Far

A new indictment against alleged Capital One hacker Paige Thompson includes a few fresh details about the case...

What the Jetflicks and iStreamItAll Takedowns Mean for Piracy

In a sweeping indictment, the feds came down hard on two unauthorized streaming services that allegedly crossed a very important line...

A Hack to Steal a Tesla, a Yelp Overhaul, and More News

Catch up on the most important news from today in two minutes or less...

Hackers Could Steal a Tesla Model S by Cloning Its Key Fob—Again

The same researchers who figured out how to clone a Tesla Model S key fob have done it again, cracking the replacement that was meant to fix the problem...

A History of Plans to Nuke Hurricanes (and Other Stuff Too)

If you think dropping a nuclear bomb into the eye of a hurricane is a bad idea, wait'll you see what they had in mind for the polar ice caps...

OpenAI Said Its Code Was Risky. Two Grads Re-Created It Anyway

The artificial intelligence lab cofounded by Elon Musk said its software could too easily be adapted to crank out fake news...

Alleged 'Snake Oil' Crypto Firm Sues Over Boos at Black Hat

The paper being presented suggested that the two researchers had a method to quickly find large semiprime numbers and essentially break RSA-2048 and any other semiprime-based encryption...

Cryptocurrency Mining Employees Expose Nuclear Plant to Internet

Xbox eavesdropping, email scammers, and more of the week's top security news...

The Consumer Bureau's Reckless Plan for Debt Collection

Opinion: A CFPB proposal would create a quandary for consumers. Click and risk a computer virus, or don't click and miss a debt payment...

What Is Cyberwar? The Complete WIRED Guide

The threat of cyberwar looms over the future: a new dimension of conflict capable of leapfrogging borders and teleporting the chaos of war to civilians thousands of miles beyond its front...

The Fight Against Robocalls Gets Powerful New Allies

All the state attorneys general, along with 12 major companies, promise to finally make serious moves against robocalls...

The Android 10 Privacy and Security Upgrades You Should Know About

Google's next big Android release will make you safer—especially in ways you can't see...

Shh! No Hacking the Census in the Library

Opinion: Millions of folks filling out the 2020 Census on public library computers also are putting themselves at risk...

Firefox and Chrome Fight Back Against Kazakhstan's Spying

The Central Asian country’s government has repeatedly threatened to monitor its citizens’ internet activities. Google and Mozilla aren’t having it...

Facebook’s New Privacy Feature Comes With a Loophole

"Off-Facebook Activity" will give users more control over their data, but Facebook needs up to 48 hours to aggregate your information into a format it can share with advertisers...

A Huge Ransomware Attack Messes With Texas

A coordinated strike against 23 local governments is called the largest such hack from a single source...

Finally, a Lightning YubiKey to Kill Password Clutter on Your iPhone

First promised back in January, the first YubiKey for iOS will help cut down on painful password clutter starting ... now...

China Attacks Hong Kong Protesters With Fake Social Posts

Twitter and Facebook say they’ve taken down misinformation campaigns from China that cast pro-democracy activists as ISIS members and cockroaches...

You Can Jailbreak Your iPhone Again (But Maybe You Shouldn’t)

Apple reintroduced a previously fixed bug in iOS 12.4, which has led to a jailbreak revival...

A Brief History of Vanity License Plates Gone Wrong

The stories might sound unbelievable, but they’re all real—and a cautionary tale for anyone who wants to get clever at the DMV...

Facebook's Voice Transcripts Were More Invasive Than Amazon's

The Capital One hacker, a Bluetooth vulnerability, and more of the week's top security news...

How Facebook Catches Bugs in Its 100 Million Lines of Code

For the past four years, Facebook has quietly used a homegrown tool called Zoncolan to find bugs in its massive codebase...

Kostya and Me: How Sam Patten Got Ensnared in Mueller’s Probe

A political consultant crosses paths with Konstantin Kilimnik, Paul Manafort, and Cambridge Analytica, then becomes part of the Russia investigation...

How a 'NULL' License Plate Landed One Hacker in Ticket Hell

Security researcher Joseph Tartaro thought NULL would make a fun license plate. He's never been more wrong...

DejaBlue: New BlueKeep-Style Bugs Mean You Need to Update Windows Now

Vulnerabilities in Microsoft's Remote Desktop Protocol continue to plague the web...

Hackers Can Turn Everyday Speakers Into Acoustic Cyberweapons

A security researcher has demonstrated how to force everyday commercial speakers to emit harmful sounds...

Watch a Drone Take Over a Nearby Smart TV

Smart TVs continue to look dumber by the day...

Hackers Could Decrypt Your GSM Phone Calls

Researchers have discovered a flaw in the GSM standard used by AT and T-Mobile that would allow hackers to listen in...

A Remote-Start App Exposed Thousands of Cars to Hackers

The bugs could have let an industrious hacker locate cars, unlock them, and start them up from anywhere with an internet connection...

Big Tech Needs to Use Hazardous Materials Warnings

Opinion: Tech users don’t have time to read novel-length terms of service. Give them a danger icon that tells them their personal risk...

Election Systems Are Even More Vulnerable Than We Thought

Black Hat and Defcon are underway in Vegas, WhatsApp flaws allow hackers to alter messages, and more of this week’s top security news...

Hackers Take on Darpa's $10 Million Voting Machine

At this year's Defcon hacking conference, Darpa brought the beginnings of what it hopes will be impervious hardware...

This Tesla Mod Turns a Model S Into a Mobile 'Surveillance Station'

The Surveillance Detection Scout can track license plates and faces near your Tesla—with all the privacy concerns that implies...

Teen Hacker Finds Bugs in School Software That Exposed Millions of Records

Some kids play in a band after school. Bill Demirkapi hacked two education software giants...

Inside the Hidden World of Elevator Phone Phreaking

Eavesdropping, reprogramming, talking to strangers: Welcome to the harmless and not-so-harmless fun of hacking elevator call boxes...

Trump’s Intel Vacancies Put Americans in Danger

Sue Gordon's departure is the latest sign that US national security might be stretching its leaders too thin—and risks putting the wrong people into roles that American lives depend upon...

How Safecrackers Can Unlock an ATM in Minutes—Without Leaving a Trace

At Defcon this week, security researcher Mike Davis will show how he can pick the lock of an ATM safe in no time, thanks to its electric leaks...

How Apple Pay Buttons Can Make Websites Less Safe

Apple Pay itself is safe. But the way websites implement it can cause serious problems...

Apple Gives Hackers a Special iPhone—And a Bigger Bug Bounty

The company’s sometimes rocky relationship with security researchers just got a whole lot smoother...

How a 10-Year-Old Desk Phone Bug Came Back From the Dead

Avaya patched a problem hackers could exploit in phones. But the bad code never went away...

Hidden Algorithm Flaws Expose Websites to DoS Attacks

Why throw a bunch of junk traffic at a service, when all it takes to stall it out is just a few bytes?...

Hackers Can Break Into an iPhone Just by Sending a Text

You don't even have to click anything...

How AT&T Insiders Were Bribed to 'Unlock' Millions of Phones

One cybersecurity threat that’s proven difficult for wireless carriers to combat? Their own employees...

A Boeing Code Leak Exposes Security Flaws Deep in a 787's Guts

One researcher's discovery suggests troubling oversights in Boeing's cybersecurity...

13-Year-Old Encryption Bugs Still Haunt Apps and IoT

RSA encryption has been around for decades. Unfortunately, so have bad implementations that leave it less secure...