Cybersecurity

Chinese Hackers Are Using The Coronavirus To Go After Mongolia
Impersonating the country's foreign ministry, hackers are trying to gain control of computers to carry out an unknown goal.

Apple Is Sending Out Another Silent Update To Fix RingCentral Webcam Flaw
Video conferencing software provided by RingCentral and Zhumu is affected by a security flaw that could allow attackers easy access to laptop cameras and microphones.

Democrats’ Top Super PAC Has Pledged Not To Use Hacked Materials In The 2020 Campaign
The move comes after the DNC took a similar pledge. Republican groups so far have not taken that step.

Twitter Suspended A DC Think Tank For Violating Its Rules Against Fake Accounts
BuzzFeed News previously revealed the Institute for Critical Infrastructure Technology was using fake accounts to promote its work. Now it's under scrutiny again.

Coffee Meets Bagel Dating App Announces Data Breach On Valentine's Day
If you're still alone on Valentine's Day, don't worry: at least a hacker has your name and email.

Democrats Already Have A Big 2020 Hacking Problem
The Democratic National Committee, worried about appearing partial to a specific candidate, has not spoken directly with 2020 campaigns about cybersecurity.

Millions Of "Fortnite" Accounts Were Exposed By A Security Flaw
Epic Games, the company behind the popular video game Fortnite, acknowledged the vulnerability and said it had been “addressed.”

The Year’s Biggest Data Breaches — And What To Do About Them
The databases at Marriott, Facebook, and more were breached this year. Here’s how to secure your account and protect yourself from identity theft.

6 Times When “Opting Out” Doesn’t Actually Stop Data Collection
Telling a company you want out doesn’t necessarily mean it stops collecting, or even sharing, your data.

Top Republican Donors Aren’t Getting Any Information About The House Republican Campaign Arm Getting Hacked
“You would expect a little better customer service,” one NRCC donor said of the communication about the hack.

The US Loves To Charge Other Governments' Hackers With Crimes. What Happens When One Of Those Countries Returns The Favor?
As the US grows increasingly comfortable with "name-and-shame" tactics against hackers who work for China, Iran, North Korea, and Russia, it's only a matter of time before US government hackers are outed.

Uh, So Japan’s Cybersecurity Minister Says He’s Never Used A Computer Before
Yoshitaka Sakurada said he had “always directed my staff and secretaries to do that kind of thing.”

Here's How We're Covering Voting And Cybersecurity On Election Day
We're on the lookout for cyber-shenanigans tomorrow. But we're also vigilant for false claims — which in the right context can do even more damage.

If You Created A Spotify Account With Facebook, It Is Forever Tied To Facebook
Want to use your Spotify account without a Facebook log-in? Officially, you probably can’t — but there's a workaround.

Your Account On Facebook — And Websites That Use Facebook Login — Could Be Compromised. Here’s What We Know.
Facebook still has no idea who the attackers are.

There’s A Simple Fix, But Grindr Is Still Exposing The Location Of Its Users
The “high level of precision” of Grindr’s distance data is revealing the location of millions of its users.

The Indictment Of North Korea For The Sony Hack Shows How Cybersecurity Has Evolved
Attribution of the attack to North Korea was viewed skeptically at the time. But the indictment this week of North Korea for the hack may lift that skepticism.

Hackers Could Gain Complete Access To Spectrum Customers’ Accounts Through A Security Flaw
Only a customer’s IP address was required to gain complete access to their account. Spectrum fixed the flaws after a BuzzFeed News inquiry.

Malcolm Turnbull's Favourite Encryption App Doesn't Think His New Legislation Can Be Enforced
The company behind the app Turnbull used to message Kevin Rudd doesn't think his new encryption legislation will be enforceable on tech companies not based in Australia.

Fox News Was Concerned Chinese Agents Would Bug Sean Hannity's Phone
The Fox host brought a burner phone to Singapore, where he interviewed President Trump after the summit with North Korea.

The DC Cybersecurity Think Tank Caught Using Fake Twitter Accounts Has Lost Sponsors, And Its Shady Cofounder Is Gone
Following a BuzzFeed News investigation, Institute for Critical Infrastructure Technology cofounder James Scott has “voluntarily decided to step away” and a law firm will review claims about him.

A DC Think Tank Used Fake Social Media Accounts, A Bogus Expert, And Fancy Events To Reach The NSA, FBI, And White House
ICIT bills itself as "America's Cybersecurity Think Tank." But BuzzFeed News found it's running fake Twitter accounts and its top expert has questionable credentials.

We Should Be Able To Vote Online
We can do better than endless lines, low turnout, and outdated tech. And the fear of hackers shouldn't stop us.

If You're Not Ready To Delete Facebook, Here's How To Limit The Data You Give It
How to take control of your personal information, if deleting Facebook, Messenger, WhatsApp, and Instagram isn’t realistic.

You Should Really Look At Your Facebook Third-Party App Settings Right Now
You may be unwittingly handing over lots of personal information to outside companies through Facebook. Here’s how to see what you’re giving up and how to change your settings.

The Equifax Breach Is Even Worse Than We Thought
The company said an additional 2.4 million people were affected by last year's data breach.

You Should Really Add A PIN To Your Cellular Account. Here’s Why.
Without a PIN, hackers can hijack your mobile account, take control of your phone number, and use that number to gain access to your online accounts.

A Car-Sharing Service Says It Was Hacked By Someone Who Wanted Free Rides
But GoGet was told by NSW Police to keep it under wraps until just now.

Two Tinder Security Flaws Mean Strangers Can Spy On Your Swipes
Tinder leaves some data unencrypted, which means a hacker on the same Wi-Fi network could track some of your activity on the app, according to the cybersecurity firm Checkmarx.

Senate Quietly Admits It Doesn't Protect Staffers' Personal Email Or Devices From Hacking
A recent threat from Russian government hackers led the Senate sergeant-at-arms to tell Senate offices that the security of their personal accounts and devices was their responsibility.

If This Link Is Texted To You Over iMessage, It'll Freeze Your iPhone
You don't even need to click the malicious link.

Sicherheitslücken machen digitale Endgeräte weltweit verwundbar - was du jetzt wissen musst
„Meltdown” und „Spectre” betreffen vermutlich Milliarden Geräte.

A Year After Trump's Victory, Our Elections Aren't Much More Secure
Midway between the 2016 and 2018 elections, the US still has major problems that make its voting systems insecure.

DHS Ban On Kaspersky Lab's Products Raises A Question: Is It Fair?
US intelligence keeps hinting at Kaspersky Lab's Russian ties. But some of the antivirus company's competitors in the US said it might be getting a raw deal.

The Equifax Hack Was Massive. Here's How To Freeze Your Credit.
Call not just one, but all three credit reporting agencies. Protect your PIN. "At this point it's the prudent course."

The DNC Begins Cybersecurity Effort To Try To Make Sure 2016 Doesn’t Happen Again
Phishing drills, top Silicon Valley hires, constant cybersecurity education, emails in the cloud, Tom Perez on Signal, and end-to-end encryption apps like Wickr, which the rest of the Democratic party committees have already adopted. The DNC’s new CTO, now concluding an internal security review, wants a “culture change inside the building.”

Cybersecurity Experts Say Prosecution Of The "NHS Hero" Hacker Could Damage Trust In US Law Enforcement
Marcus Hutchins, who found the "kill switch" to stop a massive ransomware attack that hit NHS computers, is facing charges in the US, and researchers warned that this could undermine crucial online security relationships.

Four Top Cybersecurity Officials Are Leaving US Government
Each of the officials cited their own reasons for leaving, but the lack of leadership is unusual and may make US government computers more vulnerable.

Your Roomba Is Making A Map Of Your House, And It Might Give It To Other Tech Companies
Your smart vacuum has been mapping your house since 2015, and it's considering selling that data to Google, Amazon, and Apple.

You Should Really Update Your iPhone Right Now
The latest software update patches a security vulnerability that would allow an attacker to hack your phone using the device's Wi-Fi chip.

Millions Of Verizon Customers’ Account PINs Leaked — Here’s Why You Should Still Have One
A security lapse may have exposed the account PINs of approximately 6 million Verizon customers.

Chelsea Manning Has Shared The First Photo Of Herself As A Free Woman
Manning, who announced she was transgender while in prison, leaked more than 700,000 military intelligence reports and documents to WikiLeaks in 2010 and later had her sentence commuted by then-president Barack Obama.

Windows狙う「不正ソフト」が世界で猛威 日本も標的に
問題を引き起こしているのは「WannaCry」と呼ばれるランサムウェア

If You Have Windows, Update It Right Now To Keep This Massive Hack Out
More than 150 countries across the world are being targeted in what cybersecurity experts say may be the biggest ransomware attack ever observed.

Here's Everything You Need To Know About Sketchy Emails
What "phishing" is, how to identify it, and what to do if hackers trick you.

Did The NHS Leave Hospitals Vulnerable To A Massive Ransomware Attack?
Friday's global cyberattack hit hospitals across the UK, and early evidence suggests it could have been prevented by a free patch issued by Microsoft in March.

Trump Finally Signed His Long Awaited Executive Order On Cybersecurity
The order calls for broad reviews of the federal government’s online vulnerabilities and creates standards for cybersecurity practices across various government agencies.

US Officials Are Warning About A Russian Cybersecurity Company's US Government Ties
Kaspersky has denied links to the Russian government, but US officials are raising doubts.

Hack Attack Hits French Candidate Just 36 Hours Before Polls Open
"This operation is obviously a democratic destabilization, like that which took place in the United States during the last presidential campaign," said Emmanuel Macron's campaign.

Chipotle Says Its Payment System May Have Been Hacked
The chain "detected unauthorized activity" on its payment system.

Es gibt neue Hinweise für russische Hacker-Angriffe auf die deutschen Wahlen
Dieselben russischen Hacker, die auch versucht haben, die US-Wahlen zu beeinflussen, sind offenbar in Deutschland und Frankreich aktiv. Das zeigt ein neuer Bericht der Firma Trend Micro. Ein Ziel war demnach auch die Konrad-Adenauer-Stiftung.

How To Keep Your Browsing History Actually Private
Congress voted to allow your internet service providers to sell your online activity to advertisers – here’s the simplest way to prevent that from happening.

Saks Fifth Avenue Exposed Personal Info On Tens Of Thousands Of Customers
Email addresses, phone numbers and product codes were made available on publicly accessible pages.

Two Russian Spies Have Been Charged In The Massive Yahoo Email Hack
The Justice Department indicted four men for hacking Yahoo, a breach that exposed the information of hundreds of millions of customers.

LinkedIn Blocked In Russia Over Refusal To Store Data On Russian-Based Servers
Businesses that store information tied to Russian citizens are required to hold that data on servers located in Russia but LinkedIn refused to comply, Russian regulators said.

The Hidden Risks Of Watching Porn Online
It’s not just those scary pop-ups you need to worry about.

Palantir Has Been Dumped By Another Blue-Chip Client
Palantir started working with Home Depot after its massive credit card hack in 2014, but the retailer recently decided the cyber services were no longer worth it.

The Trump Administration Is A No-Show At This Huge Cybersecurity Conference
The annual RSA conference was a place for the Obama White House to show its commitment to cybersecurity and have the government meet with the industry.

There’s Something Very Weird Happening Inside Russia’s Cybersecurity World
The arrest of several of Russia’s top cybersecurity figures has led to speculation that there’s a shake-up inside the country’s national security service related to hacks surrounding the US election.

Here’s How To Protect Your Privacy In Trump’s America
Easy tips to shield yourself from expanded government surveillance.

Donald Trump's Twitter Account Is A Security Disaster Waiting To Happen
With no known special security protections, @realDonaldTrump could be exploited for financial gain, to cause geopolitical instability, or worse.

Russian Visa Center In US Target Of Apparent Hack
The hacker allegedly behind the breach, who may have swept up the personal information of thousands of Americans who have applied for Russian visas, claims he will not publicly disclose the information.

After Trump’s Win, Secure Messaging App Signal's Downloads Increase 400%
"I think there's a lot of fear, given Trump's alarming statements about surveillance and his penchant for revenge, that he will attempt to use surveillance to crush dissent."

Donald Trump’s Phone Could Be A National Security Crisis
"Mobile security is one of the most urgent, and challenging questions facing the security of senior members of government."

No, Hackers Apparently Didn't Take Down The Entire Liberian Internet
There may have been some small outages in the west African country, but the entire country did not get taken down by the same attack that crippled US websites.

Everything You Need To Know About A Trump Server's Chats With A Russian Bank
“At the end of the day, we don’t know what happened."

Thailand Weighs New Internet Rules That Could Make Government Spying Easy
A potential revision to the country's cybersecurity law that would make it easier to send people to jail for speaking out against the government has activists concerned.

Meet Fancy Bear, The Russian Group Hacking The US Election
For the first time in history, Washington has accused a foreign government of trying to interfere with the US election. Sheera Frenkel investigates the Russian hacking group at the forefront of that claim — and finds they’ve been practicing for this moment for a long time.

The Internet Is Pissed Yahoo Built The US A Custom Tool For Email Spying
The internet giant built a custom program for US intelligence to spy on hundreds of millions of users. No one was happy to hear that.

Amid Fears Of Russian Hacks, Officials Say The US Election Is Secure
After top lawmakers accused Russia of meddling with the election, US officials insisted votes on Election Day will be secure.

Why Silicon Valley Is Turning To An Exclusive Group Of Hackers To Fix Its Code
As more companies invite hackers to crack their code for bounties, the list of invitees is getting a little more selective.

WikiLeaks Says More Clinton Leaks Are Coming — Here's What We Know
The Clinton campaign and the DNC have been tight-lipped on what preparations they’re making, if any, to respond to the anticipated release of new material from WikiLeaks.

The Census Website Crashed And Everyone Lost Their Fucking Minds
This doesn't make any census...

People Are Going Absolutely Nuts About The Census
What's going on behind #CensusFail?

There's Going To Be A Clinton Campaign Fundraiser At A Hacker Convention
“I hope whoever comes from the Clinton campaign turns off their wi-fi and Bluetooth on their phones,” one young cybersecurity professional in Las Vegas for the Black Hat conference said.

Before Hacking, The DNC Mocked A Report Questioning Its Cybersecurity
A senior Democratic National Committee official ridiculed a BuzzFeed News story about its cybersecurity as the "dumbest thing [he had] ever read."

After Apple VS. FBI, GOP Evades Encryption Question
"This issue is too important to be left to the courts."

How Hired Hackers Got “Complete Control” Of Palantir
Palantir hired a cybersecurity firm last year to test its digital defenses. A confidential report shows how the pro hackers were able to dominate the tech company's network.

This Is How ISIS Uses The Internet
They talk on Telegram and send viruses to their enemies. BuzzFeed News’ Sheera Frenkel looks at how ISIS members and sympathizers around the world use the internet to grow their global network.

These Experts Think The DNC And RNC Are Both Horrible At Cybersecurity
Both the Democratic and Republican National Committees have handed out hundreds of thumb drives to reporters ahead of their national conventions, in a move cybersecurity experts call “borderline stupidity.”

Experts Question The FBI’s Thinking In Keeping iPhone Hack A Secret
Will the government follow through with its own review process and disclose the hack it used to access the iPhone of the San Bernardino shooter?

10 Revelations From Tim Cook’s Big #AppleVsFBI Interview
In an interview with Time, Apple CEO Tim Cook talked about the company's stance in a high-stakes battle against the FBI and the Department of Justice over an encrypted iPhone.

Encryption Aids Human Traffickers, Says California Lawmaker
To combat human trafficking, a California lawmaker wants to weaken encryption tools on mobile phones.

13 Times Washington Tried To Sell Encryption Workarounds In 2015
The White House has abandoned efforts to pass a law limiting the use of end-to-end encryption, but U.S. officials continue to call for Silicon Valley to work with law enforcement to fight terrorism.

Congress Is About To Pass A Controversial Surveillance Plan By Putting It Into A Budget Bill
Sen. Wyden: “This ‘cybersecurity’ bill was a bad bill when it passed the Senate and it is an even worse bill today.”

Ask A Jihadi: An ISIS Fighter's Blog About Life In Syria
For more than a year, a Dutch jihadi has been using Tumblr to post updates and answer questions about fighting in the Middle East as a radical Islamist.

George Osborne Says UK Will Tackle The "Cyber Threat" Of ISIS
The UK chancellor said the UK would "retaliate" against cyberattacks in a speech at GCHQ, in the latest of a series of UK security measures announced after the Paris attacks.

Facebook Reports A Surge In Government Requests For Consumer Data
The United States made 65% of the world’s total data requests to Facebook — more than any other nation.

Congress Wants To Know How Government Agencies Are Using Stingray Phone Surveillance
A powerful committee in Congress is looking for answers on phone surveillance, asking 24 federal agencies how they use Stingrays, and at what cost.

The U.S. Information Chief Wants To Modernize The Government’s Cybersecurity
By staffing up and installing emerging technology, the federal chief information officer hopes to improve government cybersecurity.

Senate Passes Controversial Cybersecurity Bill
Lawmakers move to defend against malicious hackers by encouraging companies to share information about cybersecurity threats.

Apple, Twitter, Reddit Slam CISA Cybersecurity Bill
Sen. Ron Wyden and a growing faction of tech companies are opposing a controversial cybersecurity bill.

Court Says FTC Can Sue Companies For Sloppy Cybersecurity
The consumer watchdog's power to police unfair and deceptive practices extends to data privacy.

China's Draft Cybersecurity Law Could Let Local Governments Shut Off Internet
It would be a further tightening of China's already strict control over the internet.

21.5 Million People Affected In Largest U.S. Government Hack In History
The figure is far larger than the Office of Personnel Management previously reported. The agency's director told reporters Thursday that despite calls for her to resign, she remained "committed" to her work.

Personnel Director Says She Isn’t To Blame After Two Giant Hacks
“If there is anyone to blame it is the perpetrators.”

Tech Giants Urge Obama To Block Smartphone Surveillance
A letter signed by Google, Apple, Facebook, and others asks President Barack Obama to reject legislative proposals that would grant law enforcement agencies "backdoor access" to encrypted personal information.

Cybersecurity Companies Point To More Aggressive Hacking By China
New types of attacks led by groups based out of China have been highlighted in reports by Kaspersky and FireEye.

Obama Backs Two Major Cybersecurity Bills
The White House throws its support behind legislation that would increase sharing of cyberthreat information between the private sector and government. Both bills are expected to pass this week.

House To Vote On Cybersecurity Data-Sharing Bill
With bipartisan support, the House is expected to pass legislation that would enable companies to share cyberthreat information with one another and the government.