Security

Disingenuous Apple

From December 1, 2012 to May 31, 2013, Apple received between 4,000 and 5,000 requests from U.S. law enforcement for customer data. Between 9,000 and 10,000 accounts or devices were specified in those requests, which came from federal, state and local authorities and included both criminal investigations and national security matters. The most common form […]

Speculating on PRISM

PRISM is out.  And there’s been a lot written about it.  From denials at the very top of some of the world’s (nee America’s) biggest internet and technology companies to lawmakers defending the approach.  It’s also emerged that the UK’s GCHQ has access to at least some of the data being collected. There are a number […]

Selling everything, everywhere, to anyone

From The Inquirer because the Sunday Times’ business model doesn’t want links: According to the Sunday Times’ front page story, Ipsos Mori has been shopping the records around and bragging that the data can be used to track people and their location in real time to within 100 metres. The data is coming from Everything […]

Wiping data

Have you ever sold a computer or hard drive without wiping the data first? Well, it could be worse… The Japanese government’s data protection policies have been called into question after it emerged that a decommissioned coast guard vessel was sold to a pro-North Korea organisation without any checks as to whether key data on […]

BadNews for Android security

This is frightening… Lookout has discovered BadNews, a new malware family, in 32 apps across four different developer accounts in Google Play. According to Google Play statistics, the combined affected applications have been downloaded between 2,000,000 – 9,000,000 times. That’s nine million potential installations. Nine. Million. It appears that this is delayed attack, with the perpetrator pitching this […]

The internet-threatening DDoS

At the time, it was a large attack, sending 85Gbps of traffic. Since then, the attack got much worse. Here are some of the technical details of what we’ve seen. via The CloudFlare blog. This is a fascinating insight in to one of the largest DDoD attacks that’s ever been recorded.  For reference, most DDoS […]

Evernote Hacked

Evernote’s Operations & Security team has discovered and blocked suspicious activity on the Evernote network that appears to have been a coordinated attempt to access secure areas of the Evernote Service. It might be easier to list the major sites that haven’t been hacked at this point. It looks as if Evernote were using best […]

Apple attacked by same group, means, as FaceBook

Unknown hackers infected the computers of some Apple workers when they visited a website for software developers that had been infected with malicious software. The malware had been designed to attack Mac computers, the company said in a statement provided to Reuters. The same software, which infected Macs by exploiting a flaw in a version […]

Prescience

From Ars Technica’s fascinating write-up of FaceBook’s security dry run. “Internet security is so flawed,” Facebook Chief Security Officer Joe Sullivan told Ars. “I hate to say it, but it seems everyone is in this constant losing battle if you read the headlines. We don’t want to be part of those bad headlines.” That was […]