pindrop-logo-2.svg
Search
Close this search box.
Search
Close this search box.

Final Draft of Burr-Feinstein Bill Called ‘Dangerous’

The final version of a proposed bill that would require vendors to have a method for providing plaintext data to law enforcement agencies has been released, and privacy advocates and legislators are calling it “flawed” and “dangerous”. The Burr-Feinstein bill has been making the rounds of Capitol Hill in draft form since last week, and […]

Facebook Releases Account Kit SDK for Authentication Without Passwords

Facebook has released a new SDK called Account Kit that enables app developers and site owners to provide a login experience without passwords. The new system, which the company announced at its developers’ conference yesterday, uses Facebook’s own infrastructure to perform authentication via SMS and email. Account Kit doesn’t require that users have a Facebook […]

The Coming Wave of Self-Propagating Ransomware

Ransomware has become one of the top threats to consumers over the course of the past few years, and it has begun to spread to enterprises as well of late. But as bad as this problem has become, researchers say that what we’re seeing right now may be just a ripple in the water compared […]

WordPress Turns on Encryption for 1 Million Sites

The movement to encrypt as much of the public Web as possible has gotten a major boost, as WordPress has turned on HTTPS connections for all of the more than one million custom domains hosted on WordPress.com. The change happened on Friday and significantly, it doesn’t require any work on the part of the site owners. […]

Draft Bill Would Force Vendors to Give Plaintext Data to Law Enforcement

The tension between the FBI and Apple may have subsided, but that doesn’t mean Washington is no longer focusing on encrypted communications. A pair of senators is circulating a draft bill that would require communications providers to maintain a method of giving law enforcement agencies cleartext communications, a requirement that could effectively prevent the use of […]

On the Wire Podcast: Katie Moussouris

Katie Moussouris has been a part of the hacker community since, well, a long time. A former penetration tester at @stake and a longtime security employee at Microsoft, she has spent the last two years as the chief policy officer at HackerOne, the bug bounty coordination platform. Now, she’s starting her own consulting firm to […]

FBI Says Fake CEO Email Scam Losses Hit $2.3 Billion

The FBI says it has seen a huge increase in the volume of business email compromise scams hitting enterprises in the last year, and estimates that losses from the scheme have hit $2.3 billion now. Like normal phishing scams, these kinds of attacks rely on highly believable messages and a healthy dose of social engineering […]

On the Wire Podcast: Jessy Irwin

Jessy Irwin of 1Password returns to the podcast to talk with Dennis Fisher about the conclusion, at east for now, of the Apple-FBI case, the consequences of the outcome, the continued push for encryption in many communications channels, and the need for better security communications from vendors. Then the conversation turns to password policies and […]

Apple Fixes Passcode Bypass Flaw in iOS 9.3.1

Apple has fixed a serious vulnerability in iOS that allowed any user to access the contacts and some other information on some iPhone models when they were locked. The bug was the result of a problem in the way that iOS 9.3.1 handled some commands through Siri. In some specific cases, an attacker with access […]