Accurate, Focused Research on Law, Technology and Knowledge Discovery Since 2002

Category Archives: Cybersecurity

There’s a better way to protect yourself from hackers and identity thieves

recode – “If you’re using texts for two-factor authentication, it’s time to change to an app. Here’s what you need to know. When people ask me for security tips, I give them the basics. One is a strong and long password with upper and lower case letters, numbers, and special characters. (No, “Passw0rd!” is not good enough.) Each password should also be unique to each account (We love a good password manager!). And you always use two-factor authentication, or 2FA. (Don’t be like me, who didn’t have 2FA on her bank account until a hacker wired $13,000 out of it.) But the type of 2FA you use is also increasingly important. Text-based 2FA, where a text with a six-digit code is sent to your phone to verify your identity, is better known and better understood because it uses technology most of us use all the time anyway. But it’s a technology that wasn’t meant to serve as an identify verifier, and it’s an increasingly insecure option as hackers continue to find ways to exploit it. That’s why I recommend using an authenticator app, like Google Authenticator, instead. Don’t let the name intimidate you: There are a few extra steps involved, but the effort is worth it…”

Google will automatically enroll users in two-factor authentication soon

PCWorld – “Most security experts agree that two-factor authentication (2FA) is a critical part of securing your online accounts. Google agrees, but it’s taking an extra step: It’s going to automatically sign Google account holders up for two-factor accounts. In a way, Google sees two-factor authentication as a replacement for passwords, which Mark Risher, Google’s… Continue Reading

How one phony vaccine website tried to capture your personal information

Tech Republic – “In a news release published Monday, the U.S. Attorney’s Office for the District of Maryland revealed that it had seized a website called freevaccinecovax.org. Allegedly the site of a real biotechnology firm developing a COVID-19 vaccine, it was actually set up to collect personal data from visitors and use that information for… Continue Reading

Cybersecurity for Idiots

Bambauer, Derek E., Cybersecurity for Idiots (March 18, 2021). 106 Minnesota Law Review Headnotes __ (2021 Forthcoming), Arizona Legal Studies Discussion Paper No. 21-04, Available at SSRN: https://ssrn.com/abstract=3807529 “Cybersecurity remains a critical issue facing regulators, particularly with the advent of the Internet of Things. General-purpose security regulators such as the Federal Trade Commission continually struggle… Continue Reading

Pete Recommends – Weekly highlights on cyber security issues, May 2, 2021

Via LLRX – Pete Recommends – Weekly highlights on cyber security issues, May 2, 2021 – Privacy and security issues impact every aspect of our lives – home, work, travel, education, health and medical records – to name but a few. On a weekly basis Pete Weiss highlights articles and information that focus on the… Continue Reading

How we fought Search spam on Google in 2020

Google Search Central: “…Hacked spam was still rampant in 2020 as the number of vulnerable web sites remained quite large, although we have improved our detection capability by more than 50% and removed most of the hacked spam from search results….Before we deliver a set of search results on Google, there’s a lot that happens… Continue Reading

Ransomeware Task Force Launches Comprehensive Framework to Combat Ransomware

Institute for Security and Technology – A Comprehensive Framework for Action: “Ransomware is no longer just a financial crime; it is an urgent national security risk that threatens schools, hospitals, businesses, and governments across the globe. This is not a problem that any one entity can solve. Over 60 experts from industry, government, law enforcement,… Continue Reading

macOS Big Sur: A cheat sheet

Tech Republic – “Apple announced the long-rumored successor to its popular and stable OS X (see macOS 10.x) line of operating systems at this year’s Worldwide Developers Conference (WWDC). The annual, week-long event aimed at developers around the world is usually held in California, but WWDC 2020 was the first time it was held exclusively… Continue Reading

Federal Agencies Detail Russian Tactics Used in Recent Cyber Intrusions

NextGov – “The FBI, Homeland Security Department and Cybersecurity and Infrastructure Security Agency issued an alert on Russian government cyber tradecraft and mitigation techniques for targets. After publicly naming the Russian Foreign Intelligence Service, or SVR, as the culprit behind the SolarWinds hack that affected at least nine federal agencies, a set of U.S. security… Continue Reading

Pete Recommends – Weekly highlights on cyber security issues, April 24, 2021

Via LLRX – Pete Recommends – Weekly highlights on cyber security issues, April 24, 2021 – Privacy and security issues impact every aspect of our lives – home, work, travel, education, health and medical records – to name but a few. On a weekly basis Pete Weiss highlights articles and information that focus on the increasingly… Continue Reading