Security
Chinese e-tailing giant Gearbest left millions of customer details on an open server
Cheap phone cases just got expensive
IBM sucks up Flickr photos without consent to train facial recognition tech
It's legit thanks to Creative Commons, but user consent wasn't requested
Microsoft plugs two Windows zero-day flaws under active attack
Patch Tuesday bundle also fixes three DHCP RCE vulns
Amazon pledges to keep user data private as Eero deal completes
There goes my Eero
Major firms are exposing sensitive data through public Box links
Including, er, Box itself
Iranian hackers nabbed over 6TB of data from Citrix
And maybe as much as 10TB
Email marketing outfit exposes 809 million 'unique' personal records
Unsecured MongoDB database has since been yanked offline
Facebook iframe bug allowed hackers to see who you were messaging
You've been iframed
Pirate Bay users hit by Russian doll-style 'PirateMatryoshka' malware
Argh! Me hearties
Mark Zuckerberg wants to make Facebook more 'privacy focused'... er, ok
And leopards want to change their spots
Google plugs 'high severity' flaw in Chrome under active attack
Desktop, Android and Chrome OS users are urged to update asap
The NSA hasn't been monitoring phone calls for months, which is nice
The ages of eavesdropping might be over (for now)
Spectre-a-like 'Spoiler' flaw affects all Intel Core CPUs
AMD and ARM architectures unaffected by vulnerability
Google nixes photo sharing to Android TV after privacy scare
Google plants block after unwanted photo-synthesis
W3C makes password-dodging WebAuthn an official standard
It already works in Android, Windows 10 and the big browsers
Facebook is using your 2FA phone number for 'look up' search feature
Dumpster fire upon dumpster fire
Microsoft will use Google's Retpoline to mitigate Spectre in Windows 10
Office, morning: Google runs around the office making "loser" signs at Microsoft
Google exposes 'high severity' macOS flaw after Apple misses fix deadline
Until the COW comes home
In bizarre twist, Huawei's CFO is suing the Canadian Mounties
But that's oooh-keeey, ehy.
A new cybersecurity law in Thailand has residents very worried
Past form has citizens worried
YouTube is banning comments on videos of children
Someone else's problem
Senate summons Google's Pichai over failure to document Nest Secure microphone
Nest's eyrie hidey-hole means questions from Warren
Thunderclap flaw could let hackers to crack into PCs with infected peripherals
But mitigations are already in place to stop devices getting the clap
Android is taking steps to kill the password
About time, too
5G already has its own security flaws
Stealing the thunder from 5G handsets
Labour shuts down databases after accusing breakaway MPs of accessing voter data
TIG denies everything, of course
Microsoft Edge lets Facebook run Flash content without user permissions
Facebook looks like it's dragged through an Edge, backwards
GitHub adds legal protection and a bigger cash pot to its bug bounty programme
Now you can hack with confidence
Google says failure to disclose mic in Nest Guard was an 'error'
Promises that it wasn't used without permission
2.7 million private medical calls were stored on a server with no password protection
Your phone call may be recorded for leaking purposes
Lauri Love loses legal battle to retrieve seized computers
Judge rules that NCA 'needs to retain equipment'
Nest is locking customers out of accounts until they fix their security
Wants to stop the apathy surrounding security breaches
Twitter reportedly hoards DMs from your tweeting past
The social network knows what you did Summer 2007
Huawei security concerns could be managed, says GCHQ
So quit buggin'
Apple is forcing 2FA on iOS and macOS developers
Cupertino wants devs to be more secure, who have thought it?
500px confirms 2018 data breach that exposed data on 15 million users
'Unauthorised party' framed for data exposure
Amazon and Google are pressing smart home firms to report your every waking moment
And a few sleeping ones as well
Hacker attempts to flog 620 million pilfered accounts on the dark web
$20,000 for, er, CoffeeMeetsBagel and Arty accounts
Hackers utterly bork VFMail's US service for no clear reason
Firm says dick-move atttack caused 'catastrophic destruction'
Apple sued because two-factor authentication is inconvenient
2FA suit likely to win SFA
Google brings encryption to low-end devices with Adiantum
No octa core? No problem!
Mumsnet security boob enabled users to log in to each others' accounts
Website reports itself to ICO after upgrade leads to data breach
Amazon reportedly pushing facial recognition on marketplace sellers
The bad kind of Face Time
Apple finally fixes FaceTime privacy bug and credits teen who found it
iOS 12.1.4 arrives to patch high-profile eavesdropping exploit
Sneaky iPhone apps are recording users' screens without permission
Apparently it's all in the name of 'user experience'...
US lawmakers take Apple to task over 'troubling' FaceTime bug
Says it doesn't believe Apple has been transparent about glitch
Android vulnerability lets hackers wreak havoc using, er, a PNG file
Basic pwn isn't being exploited, Google says
Most read
