Security Experts:

long dotted

NEWS & INDUSTRY UPDATES

U.S. authorities filed charges against three China-based hackers for stealing sensitive information from U.S. based companies, including sensitive data from Siemens industrial groups and accessing a high-profile email account at Moody’s. [Read More]
Two US states are investigating Uber's cover-up of a hack at the ride-sharing giant that compromised the personal information of 57 million users and drivers. [Read More]
Kaspersky shares more details from its investigation into reports that Russian hackers stole NSA data using its software [Read More]
Day trader indicted for his alleged role in a scheme that involved hacking brokerage accounts and using them to make fraudulent trades [Read More]
Former Secret Service agent already convicted for stealing Bitcoins from Silk Road gets more prison time for theft of digital currency from government wallet [Read More]
When he lands in China on Wednesday, US President Donald Trump will enter the so-called "Great Firewall" of online censorship that monitors people's internet habits and blocks websites such as Twitter, Facebook and Google. [Read More]
The hacker who falsely claimed to have breached FireEye -- it was just the personal online accounts of one employee -- was arrested by international law enforcement and taken into custody on October 26, FireEye CEO Kevin Mandia said Wednesday. [Read More]
A law coming into force will give the Kremlin greater control over what Russians can access online ahead of a presidential election next March. [Read More]
A Middle Eastern threat group has been using a Flash Player zero-day vulnerability to deliver FinFisher spyware [Read More]
A Russian court on Monday fined the popular Telegram messenger app for failing to provide the country's security services with encryption keys to read users' messaging data. [Read More]

FEATURES, INSIGHTS // Tracking & Law Enforcement

rss icon

Wade Williamson's picture
Asking for security backdoors that only benefit the good guys is like asking for bullets that only hurt the bad guys. That’s simply not how encryption works.
David Holmes's picture
In the initial hours after the Paris attacks by Islamic terrorists, when the PlayStation 4 rumor was first circulating, I decided to see exactly what kind of encryption the PS4 uses for its messaging system.
James McFarlin's picture
The overall industry tone of caution around active defenses may be calibrated to defuse the notion rather than taking the argument, buying time for other alternatives to surface.
David Holmes's picture
In 2011, Twitter began encrypting all information between the (mostly) mobile endpoints and their own servers. This made it more difficult for monitoring agencies to determine a mobile user’s Twitter profile, and thereby that user’s follow list. More difficult, but not impossible.
Adam Firestone's picture
The time has come for the technology professions to demonstrate ethical maturity and adopt standards of ethical conduct to which we hold ourselves and our peers accountable.
Wade Williamson's picture
If criminals can’t use or sell stolen data without being caught, then the data quickly becomes worthless. As a result it’s critical to understand what happens to data after a breach.
Eric Knapp's picture
Because transactions using virtual currencies happen anonymously, they confuse issues of jurisdiction and can become difficult to enforce. When authorities do take action, cybercrime simply re-images itself with a new currency and a new platform.
Oliver Rochford's picture
As the “Snowden leaks” continue in their revelations and unraveling of the twisted web of government surveillance, it is becoming clear that the foundation of trust in the Internet as a shared commons has been thoroughly undermined.
Jon-Louis Heimerl's picture
The power of metadata does not come in that data itself but in the ability of that data to be processed and correlated in an automated fashion. What many believe is meaningless data can reveal more than one would think.
Chris Coleman's picture
Over the past year the buzz around tracking threat actors has been growing and in my opinion hitting the height of the hype cycle. Relying on behavior profiles alone is a great way to get an unwelcomed outcome.