The FBI's facial recognition database has more than 400 million pictures to help its criminal investigations, but lacks adequate safeguards for accuracy and privacy protection, a congressional audit shows. [Read More]
Gary Shalon and Ziv Orenstein pleaded guilty to orchestrating a computer hacking and fraud scheme that included, but was not limited to, the theft of 83 million customer credentials from JPMorgan. [Read More]
Two Japanese men were arrested for allegedly stealing money from an ATM, with local media reporting they were part of a coordinated nationwide heist that netted millions of dollars earlier this month. [Read More]
A Ukrainian national has pleaded guilty to charges of hacking into databases holding unpublished company press releases to gain insider information that led to $30 million in illicit gains, officials said. [Read More]
In the initial hours after the Paris attacks by Islamic terrorists, when the PlayStation 4 rumor was first circulating, I decided to see exactly what kind of encryption the PS4 uses for its messaging system.
In 2011, Twitter began encrypting all information between the (mostly) mobile endpoints and their own servers. This made it more difficult for monitoring agencies to determine a mobile user’s Twitter profile, and thereby that user’s follow list. More difficult, but not impossible.
Because transactions using virtual currencies happen anonymously, they confuse issues of jurisdiction and can become difficult to enforce. When authorities do take action, cybercrime simply re-images itself with a new currency and a new platform.
As the “Snowden leaks” continue in their revelations and unraveling of the twisted web of government surveillance, it is becoming clear that the foundation of trust in the Internet as a shared commons has been thoroughly undermined.
The power of metadata does not come in that data itself but in the ability of that data to be processed and correlated in an automated fashion. What many believe is meaningless data can reveal more than one would think.
Over the past year the buzz around tracking threat actors has been growing and in my opinion hitting the height of the hype cycle. Relying on behavior profiles alone is a great way to get an unwelcomed outcome.