Accurate, Focused Research on Law, Technology and Knowledge Discovery Since 2002

Category Archives: PC Security

IBM X-Force Intelligence Threat Index 2019

“As the cyber threat landscape evolves, what we saw in 2018 is organisations across all industries are facing unmanageable levels of cyber threats brought on by the changing threat landscape, the risk of exposure and an ever-growing attack surface. The IBM X-Force Research team is a crack team of security professionals who run thousands of… Continue Reading

Nine Steps That Companies Should Take To Protect You

EFF: “Today we are announcing Fix It Already, a new way to show companies we’re serious about the big security and privacy issues they need to fix. We are demanding fixes for different issues from nine tech companies and platforms, targeting social media companies, operating systems, and enterprise platforms on issues ranging from encryption design… Continue Reading

Paper – Perceptions and Reality of Windows 10 Home Edition Update Features

In Control with no Control: Perceptions and Reality of Windows 10 Home Edition Update Features, Jason Morris, Ingolf Becker, Simon Parkin – University College London Workshop on Usable Security (USEC) 201924 February 2019, San Diego, CA, USAISBN 1-1891562-53-3 http://dx.doi.org/10.14722/usec.2019.23008 – www.ndss-symposium.org: “Home computer users are regularly advised to install software updates to stay secure. Windows… Continue Reading

Half of all Phishing Sites Now Have the Padlock

Krebs on Security – “Maybe you were once advised to “look for the padlock” as a means of telling legitimate e-commerce sites from phishing or malware traps. Unfortunately, this has never been more useless advice. New research indicates that half of all phishing scams are now hosted on Web sites whose Internet address includes the… Continue Reading

How to Tell if Your Account Has Been Hacked

Motherboard – How to check if your Gmail, Facebook, Instagram, Twitter, and other accounts have been hacked. “Hackers routinely target high profile victims like politicians or wealthy cryptocurrency investors. But you could become a target too. Maybe an abusive former partner wants to stalk you, or a run-of-the-mill cybercriminal wants to get into your bank… Continue Reading

US-CERT issues guide on how to properly dispose of your electronic devices

ZDNet – “Over the past few years, there have been numerous reports, and studies about how second-hand devices that have been put up for sale still contained information from previous owners, exposing those individuals to scams, blackmailing, or identity theft. This week, the United States Computer Emergency Readiness Team (US-CERT), a division part of the… Continue Reading

GAO – Actions Taken by Equifax and Federal Agencies in Response to the 2017 Breach

Data Protection: Actions Taken by Equifax and Federal Agencies in Response to the 2017 Breach. GAO-18-559: Published: Aug 30, 2018. Publicly Released: Sep 7, 2018: Hackers stole the personal data of nearly 150 million people from Equifax databases in 2017. How did Equifax, a consumer reporting agency, respond to that event? Equifax said that it… Continue Reading

DHS announces US critical infrastructure at risk from Russia

WSJ – DHS Forms New Cyber Hub to Protect Critical U.S. Infrastructure Secretary Nielsen Says ‘Our Intelligence Community Had it Right’ About Russian Interference – What What What ⸮⸮⸮ [see my previous posting about this punctuation mark] As this article is behind a paywall – you may want to avail yourself via US-CERT of the… Continue Reading

These are the websites your clean-install Windows PC connects to by itself

MSPoweruser: “Since the release of Windows 10, Microsoft has been accused of breaching privacy and connecting users to services without proper disclosure. The company now has released a list of websites and services that a Windows PC connects to after a clean install. The list mostly consists of Microsoft services which provide data endpoints to… Continue Reading

Getting a password manager is the most important way to improve your online security

Washington Post – “…After testing password managers that work across browsers and devices, I recommend one called Dashlane. It’s the one simple enough that you’re likely to stick with it, though its features are neck and neck with rivals 1Password and LastPass, which are also fine choices. Dashlane, used by 10 million people, is free… Continue Reading

Whistleblower’s guilty plea and unmistakable trail of watermarks

Axios: “Reality Winner has pleaded guilty: “All of my actions I did willfully, meaning I did so of my own free will,” she told a court on Tuesday, per the New York Times‘ report. The former Air Force linguist earned the distinction of being the first person prosecuted by the Trump administration on charges of… Continue Reading