security
Safari Flaws Exposed Webcams, Online Accounts, and More
Apple awarded a $100,500 bug bounty to the researcher who discovered the latest major vulnerability in its browser.
Now Is a Good Time to Update Your Recovery Email Addresses
You know those “emergency” email addresses you can use to get into your email and other accounts in case you're locked out? Make sure they're up-to-date.
Crypto.com Finally Admits It Lost $30 Million in a Hack
Plus: Scammer arrests, the NSA plays defense, and more of the week's top security news.
How Apple's iCloud Private Relay Can Keep You Safe
The newest security measure is still in beta. But if you want to make use of it, here's what you need to know.
NSO Group Spyware Targeted Dozens of Reporters in El Salvador
The newly disclosed campaign shows how little the company has done to curb abuses of its powerful surveillance tools.
The Worst Hacks of 2021
It was a year of ransomware, surveillance, data breaches, and yes, more ransomware.
Buckle Up for More Log4j Madness
Plus: An alleged spy, a ransomware arrest, and more of the week's top security news.
The Log4J Vulnerability Will Haunt the Internet for Years
Hundreds of millions of devices are likely affected.
How to Guard Against Smishing Attacks on Your Phone
“Smishing" is an attempt to collect logins or other sensitive information with a malicious text message—and it's on the rise.
US Wins Appeal to Extradite Julian Assange
Plus: Bluetooth security, a Brazil hack, and more of the week's top security news.
A Planned Parenthood LA Hack Affects 400,000 Patients
Plus: A Ubiquiti hack revelation, predictive policing, and more of the week's top security news.
NSO Group Spyware Hits at Least 9 US State Department Phones
The incident lays bare how hollow the surveillance company’s reassurances about the limits of its hacking tools have always been.
Facebook Will Force More At-Risk Accounts to Use Two-Factor
The platform joins Google and others in requiring stronger protections for its most vulnerable users.
A Bunch of Malicious Google Play Apps Stole User Banking Info
Using tricks to sidestep the app store’s restrictions, malware operators pillaged passwords, keystrokes, and other data.
Iranian Hackers Are Going After US Critical Infrastructure
A hacking group is targeting a broad range of organizations, taking advantage of vulnerabilities that have been patched but not yet updated.
Amazon's Dark Secret: It Has Failed to Protect Your Data
Voyeurs. Sabotaged accounts. Backdoor schemes. For years, the retail giant has handled your information less carefully than it handles your packages.
Another Intel Chip Flaw Puts a Slew of Gadgets at Risk
The vulnerability allows an attacker with physical access to the CPU to bypass the security measures protecting some of its most sensitive data.
You Need a Password Manager. Here Are the Best Ones
Keep your logins locked down with our favorite apps for PC, Mac, Android, iPhone, and web browsers.
‘Ghostwriter’ Looks Like a Purely Russian Op—Except It's Not
Security researchers have found signs that the pervasive hacking and misinformation campaign comes not from Moscow but from Minsk.
Someone Snuck a Card Skimmer Into Costco to Nab Shopper Data
Plus: A Robinhood breach, NSO Group spyware, and more of the week's top security news.
Metadata From Encrypted Messages Can Keep People Safe
Sharing “metadata of the metadata” is crucial for informing product design that will fight misinformation without allowing security backdoors.
Hackers Targeted Hong Kong Apple Devices in Widespread Attack
Visitors to pro-democracy and media sites in the region were infected with malware that could download files, steal data, and more.
The Biggest Ransomware Bust Yet Might Actually Make an Impact
By arresting one alleged hacker associated with REVil and seizing millions from another, the US has made it clear that ransomware comes with a cost.
The US Puts a $10M Bounty on DarkSide Ransomware Hackers
Plus: a “Trojan Source” bug, Russian hackers exposed, and more of the week's top security news.