A vulnerability in Android could allow attackers to “unlock” phones without cracking PIN codes – using malware to deactivate Google’s locks on handsets and tablets. The vulnerability can “turn off” all locks a user puts in place.
Apple users may soon be able not only to unlock their devices simply by showing their face – they may be able to “control” functions on Macs, iPhones and iPads simply by looking at the screen, and prevent people nearby snooping on lock screen alerts.
Major websites such as Kickstarter, WarnerBros.com and the online photography community 500px.com are among 2,000 at risk from a vulnerability that could allow attackers to impersonate real users and access their sites, according to a researcher.
Human heartbeats are near-unique – each person’s rhythm forms a mathematical pattern which can be used to identify people. A bracelet which aims to use this for secure ID took a big step towards PCs and phones in the home this week, as 6,000 developers began work on apps for it.
A major British horse racing website has been hit by an “aggressive” and “malicious” cyber attack – and user details have leaked, including some passwords which the owners warn “could be deciphered.”
A ‘high impact’ security bug affecting Gmail’s password recovery system was discovered by a researcher – and quickly patched. The vulnerability allowed attackers to reset user passwords remotely.
When any computer user types on a keyboard, the pattern of keystrokes is unique – like a fingerprint. When using a mouse, the patterns for each user are just as different – and Iowa State engineers aim to combine these “patterns” to identify people, offering a more secure alternative to passwords.
Keypic uses an image – usually an advert, but it can be a single pixel, an animation, or anything the site’s administrator wants – and checks for typically “human” behavior. It’s already used on nearly 6,000 sites, and is available as a plug-in for WordPress and Drupal.
Facebook users who used the same email and password on their Adobe and Facebook accounts have been offered a helping hand by Facebook in the wake of the recent massive breach at Adobe, which leaked account data for 38 million users.
The system relies on users describing patterns of blots, then matching descriptions to patterns – and should be foil the automated programs used by cybercriminals, the researchers say.
A new app lets you unlock Mac computers without entering a password – users simply tap on a paired iPhone with the Knock app when near the Mac, and it opens up.
Adobe’s security breach laid bare 38 million passwords to the world – and a security researcher claims that 1.9 million of these are the simple “123456”. Half a million craftier customers chose “123456789”
Google may soon offer Chrome users a little extra protection for their passwords – which could previously be accessed in “one click” on unattended machines. The search giant is testing a new security feature, according to reports.
When Adobe admitted 38 million user IDs had leaked from its system this week, it was one of a long line of companies to fall victim to such data breaches. Most companies react fast – and offer good advice – but our guide adds a few extra safeguards if your ID is put at risk.
Major companies such as Disney, Boeing and General Electric are still handing out information to “hackers” using the most basic tool of all – the human voice, according to a report on a competition at DefCon.
An American artificial intelligence company claims to have “cracked” CAPTCHAs – the standard word tests used to tell humans and computers apart online. A program designed by Vicarious can break standard CAPTCHAs with 90% accuracy, Vicarious claims.
Launched today in London, the technology mixes biometrics and other security technologies for what its makers claim is a “transformative” solution to combating cybercrime – and which can be used for network security, banking machines and even smartphones.
Routers from Chinese manufacturer Tenda contain a hidden “backdoor” which could allow attackers to “take over” the router and send it commands. The company also sells routers branded as Medialink, and the machines are available around the world.
Apple has announced an event for October 22, with the usual teasing headline, “We still have a lot to cover.” Leaked pictures hint that at least one of those things will be an iPad protected by the Fingerprint ID system used in iPhone 5S.
For many PC users USB keys must seem like a relic of a bygone age – but for security-conscious workers, keys can be a very safe place for data. Porsche and Lacie’s new USB offers password-protected storage for sensitive files.