What do you do when attackers say they’ll reset hundreds of millions of iCloud accounts?More
Security, privacy and Internet of Things updates for the week of March 18th 2017: Apple ransom, CIA leaks, Google blacklists Symantec certificates, CIA data dump, Instagram 2 factor, ISPs selling your info, Android wifi tracking, not quite breaches, Bixby, Alexa.More
Personal security questions not only are a poor user experience, they can reduce account security. Let’s explore them from both user and developer perspectives.More
Items of note in security, privacy and IoT from the week of March 12th, 2017.More
The biggest story in security this week is Wikileaks’ dump of CIA documents, reminding people that yes, the CIA is a spy agency and that yes, spy agencies would want to have cracking tools.
The big takeaways are that they have tools for hacking specific devices. Wikileaks spun this as the CIA being able to crack Signal and Whatsapp, but nothing in the documents indicates that – it’s more that the CIA can take control of the phone’s or computer’s OS – once that’s done, they can compromise any app without breaking its protocol.