You might think that the NSA and other shadowy three-letter agencies are the world’s biggest cloud cheerleaders: all your data, all the time, in the cloud where Prism and XKeyscore can, apparently, access it.
“Germany is a country of freedom.”
“We’re a human-run agency operating in a complex environment with a number of different regulatory regimes, so at times we find ourselves on the wrong side of the line,” said an anonymous NSA official.
“I wasn’t even trying to hack it,” Malwarebytes researcher Jean Taggart told me. “I was just showing a coworker. He walked up, put his hand over my keyboard, and logged into my computer.”
Fewer admins mean fewer people that could possibly abuse classified data.
Guest Post For companies looking for newer, better sources of revenue, the government’s open data programs could be the answer.
Twitter hacking may be the new phone phreaking, but with a parcel of new updates, Twitter’s making it easier to keep control of your account — and ensure no unauthorized people tweet in your name.
The NSA has been secretly giving information from intelligence intercepts, wiretaps, informants, and phone records to the DEA to help them launch criminal investigations of Americans. Law enforcement agents are instructed to cover up the source of their information.
Guest Post Why Chipotle faked its own hack in a bid to raise awareness for its 20th anniversary.
XKeyscore is a massive big data collection, warehousing, and analysis program that, if we can believe what Snowden is saying, basically lays bare your and my entire digital selves. Essentially, we’re Frodo and Sam, and the NSA is the Eye of Sauron — but better, smarter, more powerful.
Editor’s Pick Just as email spam has cemented itself as an unstoppable scourge in our daily digital existence, content scraping bots are polluting the web by slowing sites down, stealing content, and generally running amok.
Apple just issued an update on its little developer site hacking issue, telling developers that its resources are coming back online and offering a system status update webpage.
One little detail is missing, however: a timetable.
Your company’s IT department has the power to wipe personal data off your smartphone — a scary proposition for anyone who values privacy. MobileSpaces believes it has a solution.
Sourcefire is best known for its Intrusion Protection System (IPS) and advanced firewall, which it claims can protect companies from 99 percent of attacks.
Apple’s developer site is still down following a very public hacking attack by Ibrahim Balic last week, in which he downloaded over 100,000 developers’ private contact information. But Balic finally has what he wanted all along: recognition from Apple of his efforts.
The company says it is “completely overhauling our developer systems, updating our server software,” to prevent similar threats in the future.
Editor’s Pick Apple released the information just a few moments ago in an email to registered developers, saying that sensitive emails, names, and physical addresses could have been compromised, and that it took the website down on Thursday to prevent any further damage.
“Write ten lines of code and you’ll have two-factor authentication on your site,” CEO Robert Masse told me a few days ago in Montreal. “You still own the customer, and it’s completely free.”
In these days of NSA snooping and built-in backdoors, do you really want your entire digital life in the cloud?
Security experts say the domain expansion plan has been “rushed,” and we should anticipate a sharp rise in fraud. What steps should consumers and brands take now?
“That’s the beauty of the scam,” Segura told me. “You’re not actually infected — they make you think that you are, and most users believe it — and that’s the trick.”
“I made up my mind to tell the truth about Google Glass,” Barrett told me today. “I’ve seen all the Ocean’s 11 and card-counting movies where they take you into the back room and threaten to break your legs in the old-school casinos … I don’t think they do that any more, but didn’t want to take any chances.
Information exposed includes names, addresses, date of birth, telephone numbers, and emails.
Digify lets you read a document on your mobile device, but then it disappears from the machine.
Pirate Bay cofounder Peter Sunde is building a new mobile messaging app that will have superior encryption to prevent pretty much any outside party from listening in on your conversation, he said.
What can you do about it besides march, shout, and protest?
A cabal of lawyers from the FBI and departments of Defense, Justice, and Homeland Security — dubbed “Team Telecom” — required fiber-optics companies to maintain internal groups of employees with security clearances to ensure that surveillance requests from the government were filled quickly and confidentially.
News about PRISM and other government surveillance programs have brought these issues to the foreground of our minds and the news cycle, but online privacy was an oxymoron long before those fateful slides leaked.
“With Glass I went closer to the action than I probably should have, and saw a couple fights going on. I think I got the first arrest with Google Glass … kinda cool!”
Editor’s Pick “It can essentially take over the normal functioning of the phone and control any function,” Bluebox CTO Jeff Forristal posted.
App.net cofounder Bryan Berg noticed that LinkedIn was DNS-hijacked tonight and that traffic was rerouted to a shady India-based site, http://www.confluence-networks.com. That’s bad for LinkedIn, but there’s worse news for you.
“I’m not sure I can say this more clearly: we’re not in cahoots with the NSA and there’s is no government program that Google participates in that allows the kind of access that the media originally reported.”
With its audio-fingerprinting technology, the company says it can pinpoint 80 percent of would-be attackers on their first call.
Google is taking a stand against FISA gag orders with a pretty simple but powerful appeal: free speech.
Chomsky makes at least one pretty significant mistake, however. He said that Google Glass has a camera and a recorder, “which means that everything that’s going on around you goes up on the Internet.”
Microsoft, Yahoo, Google, Facebook, AOL, and Apple might breathe a little easier today as NSA Director General Keith Alexander lends credibility to their testimony.
You gotta love security geeks — they can make it so easy for you. At least, if you’re a black hat hacker.
A new study by by cloud optimization company Newvem checked 61,545 Amazon Web Services instances which total a yearly spend of over $157 million. The good news is that cloud users are getting much more savvy about security, utilization, and optimization.
But there’s still room to improve — a lot of room.
With 425,000 beta users on board, social password manager PasswordBox is going live. And it’s offering free-for-life memberships to the first million users who sign up.
Apple said in a statement that it has never heard of PRISM, the NSA’s now-public alleged homeland surveillance project.