Mt. Gox, once the leading Bitcoin exchange, has given up its plans to rebuild following a devastating data breach in February. On February 28, Mt. Gox filed for bankruptcy just days after going offline due to security concerns. The resulting public relations nightmare caused bitcoin prices to dip and ruined Mt. Gox’s credibility as a secure place to store cryptocurrency.
Wed, 16 Apr 2014 02:58:13 -0400
Wed, 16 Apr 2014 01:43:27 -0400
By Miyoung Kim and Se Young Lee SEOUL (Reuters) - Samsung Electronics Co Ltd's new Galaxy S5 smartphone should outsell its predecessor and defy predictions that the South Korean titan's latest model will struggle in a tough market for high-end handsets, a top executive said. The world's biggest smartphone maker has slashed prices of the S5, which rolled out globally on Friday, offered a gift pack worth $600, and more than doubled the number of initial launching countries to 125 in a bid to sustain growth in the mobile business, which generates 70 percent of its total profit. A smooth launch is crucial for Samsung, which reported its second straight quarter of profit decline earlier this month as margins in the key smartphone business come under growing pressure from cheaper Chinese rivals. "(The S5) is selling faster than the S4 so far, though it's difficult to share specific numbers as we're still at early stages," Yoon Han-kil, senior vice president of Samsung's product strategy team, told Reuters in an interview.
Tue, 15 Apr 2014 20:55:56 -0400
A trade group for wireless providers said Tuesday that that nation's biggest mobile device manufacturers and carriers will soon put anti-theft tools on the gadgets to try to deter rampant smartphone theft. ...
Tue, 15 Apr 2014 20:30:13 -0400
If you find yourself unable to access your favorite websites over the next few weeks, don’t worry: The Internet isn’t broken, it’s just undergoing very needed repairs. The Washington Post has talked with some security experts who expect that patching the Heartbleed bug is going to cause major disruptions on the Internet for a while as major web companies scramble to guard their websites against a bug that caught the tech world flat-footed last week. “Imagine if we found out all at once that all the doors everybody uses are all vulnerable — they can all get broken into,” Jason Healey, a cybersecurity scholar at the Washington-based Atlantic Council, told the Post. “The kinds of bad things it enables is
Tue, 15 Apr 2014 13:17:11 -0400
For the past week, a lot of the tech world has been trying to figure out what to do about the Heartbleed bug that has the potential to compromise the security of any website that uses the Open SSL encryption protocol. However, The National Journal reports that Google got a big head start on patching Heartbleed because it discovered the security hole back in March and never told anyone else about it. In some ways this isn’t too surprising since companies often make sure to patch their own websites and services when they discover security flaws before telling the world about them. However, The National Journal notes that “keeping the bug secret from the U.S. government may have left federal
Tue, 15 Apr 2014 09:25:06 -0400
Electric, natural gas and major water companies and regional distribution systems in Connecticut have been penetrated by hackers and other cyber attackers, but defenses have prevented interruption, state ...
Tue, 15 Apr 2014 06:25:13 -0400
Google on Friday is not only opening up Google Glass orders to interested buyers looking to score a pair of smart glasses, but it’s also rolling out a major update to its wearable device, bringing KitKat to Glass owners. Starting with 9 a.m. EDT, Google will be opening up a “limited number of spots in the Explorer Program,” but the device will only be available to U.S.-based customers willing to spend $1,500 for it. As for KitKat for Glass, Google describes it as its “most exciting” update for the device yet. “Our most exciting update is subtle, but big,” the company wrote on Google+. “We’ve been working on a significant upgrade to a new version of the Glass software. It’s not a
Mon, 14 Apr 2014 21:45:32 -0400
Here’s how you know that Heartbleed is a serious and widespread problem: Even BlackBerry is scrambling to push out patches for it. Although BlackBerry prides itself with being the world’s leader in mobile security, Reuters reports that it was caught flat-footed by the Heartbleed bug just like everyone else and is now planning “to release security updates for messaging software for Android and iOS devices by Friday to address vulnerabilities in programs” exposed by the massive new security flaw. Heartbleed is a major flaw in OpenSSL, the security protocol used to encrypt web traffic, that could potentially allow hackers to swipe any data that users send over the web. News about the bug sent shockwaves throughout the tech industry last week as companies are now
Mon, 14 Apr 2014 18:22:24 -0400
By Alexei Oreskovic SAN FRANCISCO (Reuters) - Google Inc updated its terms of service on Monday, informing users that their incoming and outgoing emails are automatically analyzed by software to create targeted ads. The revisions more explicitly spell out the manner in which Google software scans users' emails, both when messages are stored on Google's servers and when they are in transit, a controversial practice that has been at the heart of litigation. Last month, a U.S. judge decided not to combine several lawsuits that accused Google of violating the privacy rights of hundreds of millions of email users into a single class action. Users of Google's Gmail email service have accused the company of violating federal and state privacy and wiretapping laws by scanning their messages so it could compile secret profiles and target advertising.
Mon, 14 Apr 2014 17:59:33 -0400
By Jim Finkle and Louise Egan BOSTON/OTTAWA (Reuters) - Canada's tax-collection agency said on Monday that the private information of about 900 people had been compromised as hackers exploited the "Heartbleed" bug, and security experts warned that more attacks will likely follow. The breach allowed hackers to extract social insurance numbers, which are used for employment and gaining access to government benefits, and possibly some other data, the Canada Revenue Agency said.
Mon, 14 Apr 2014 17:17:56 -0400
This past December, we reported that a popular Android app called Brightest Flashlight could do more than just shine light. Brightest Flashlight was a simple flashlight app that was highly-rated and had over 50 million installs. However, it had one devious, hidden feature: It would share personal data, such as your location, with advertisers. The FTC caught wind of this and began investigating the developer. According to GigaOm, the FTC reached a settlement with the developer last week, and it looks like he got away easy. Erik Geidl, the single developer behind Brightest Flashlight, will have to stop collecting location data unless he clearly explains how and why he’s doing so. He will also have to delete any location data he
Mon, 14 Apr 2014 15:51:38 -0400
U.S. retailers are planning to form an industry group for collecting and sharing intelligence about cyber security threats in a bid to prevent future attacks in the wake of last year's big attack on Target Corp. The National Retail Federation said on Monday it will establish an Information Sharing and Analysis Center, or ISAC, for the retail industry in June. ISACs are industry groups that typically run security operations centers that operate around the clock, providing alerts about emerging threats to their members and sharing information provided by law enforcement and other government agencies. There are more than a dozen such organizations among industries including financial services, emergency services, healthcare, technology companies, public transportation and utilities. The financial services industry ISAC, which is widely considered the most successful group of its type, will help retailers set up the new organization.
Mon, 14 Apr 2014 15:03:27 -0400
Google announced on Monday that it would be acquiring Titan Aerospace, a startup that develops high-altitude, solar-powered drones. Titan Aerospace was previously courted by Facebook for a reported $60 million buyout, but it appears that Google struck first. The Wall Street Journal reports that Google did not divulge the price of the acquisition, but the search giant did say that the 20 or so employees of Titan will remain in their New Mexico location. CEO Vern Raburn will also continue to run the company. Google plans to ingratiate the Titan team with its own Project Loon, an undertaking which hopes to expand Internet coverage by building large, Internet-enabled balloons for areas of the world that are not yet online. “It’s still early days,
Mon, 14 Apr 2014 14:09:20 -0400
NEW YORK (AP) — The number of Americans who say they've had important personal information stolen online is on the rise, according to a Pew Research Center report released Monday.
Mon, 14 Apr 2014 14:02:02 -0400
iPhone fans are by far the most loyal fans out there, but Android Authority has put together a very comprehensive guide for the tiny minority of iPhone users out there who are interested in making the switch to Google’s mobile operating system. The guide contains five major sections for iPhone users that tell you how to move your iPhone contacts, calendars, images, bookmarks and music over to your shiny new Android device. Interestingly, most of the transfers can be done pretty easily through Apple’s own iCloud service that backs up your iPhone’s contacts, calendar events, bookmarks and other key data. In fact, the only part of Android Authority’s guide that doesn’t at all involve iCloud is its recommendations for moving your
Mon, 14 Apr 2014 12:59:25 -0400
Heartbleed is a very scary bug that came to light recently and once again sent the Internet into a frenzy with talk about how to protect yourself from security vulnerabilities and hackers. Several sites also published guides covering how to protect yourself from Heartbleed, suggesting that using stronger passwords could somehow have kept users safe from having their data compromised by Heartbleed. Using complex passwords is always a good idea, but even the longest password would have been vulnerable in the case of this particular flaw. What would have offered users solid protection, however, is two-step verification. Two-step verification is a security measure that adds an additional layer of authentication in order for users to log into a website. So, for example, you might first
Mon, 14 Apr 2014 10:27:57 -0400
The German Aerospace Center says it was the target of a suspected espionage attack for several months. The research center on Monday confirmed a report by German magazine Der Spiegel and said it had asked ...
Mon, 14 Apr 2014 08:45:03 -0400
Taking the stand on Friday in the second U.S. Apple vs. Samsung patent lawsuit, Google’s Android engineering vice president Hiroshi Lockheimer said that the company did not copy iPhone when designing Android. However, Re/code and AppleInsider have obtained internal Google documents submitted into evidence that remind us just how different Android was in the beginning, with the first Android devices not even supposed to support touchscreen displays. “We like to have our own identity,” Lockheimer said while defending Android, revealing that he joined Google in April 2006 to work on Android. The documents in question, however, show how the identity of Android was shaped around the iPhone’s launch, turning it from a BlackBerry lookalike into an iPhone alternative. The “Android Project Software Functional
Mon, 14 Apr 2014 02:08:00 -0400
On Friday, the Obama administration unequivocally denied a report that the NSA had exploited the Heartbleed vulnerability to gather intelligence, part of a swift effort to shut down a damaging storyline that featured the government knowingly failing to shield millions of Americans from an online security flaw. But in so doing, the administration also made two important admissions. First, it can, if pressed, use plain English free of obvious deceit, in contrast to the obfuscation that has characterized the government's response to a stream of revelations about the NSA's vast internet dragnet. The vulnerability made it possible to obtain whatever data was in the memory of the computer during the authentication process, which meant that protective measures like user passwords or security questions might be accessible to hackers.
Sun, 13 Apr 2014 20:24:38 -0400
By Jim Finkle BOSTON (Reuters) - BlackBerry Ltd said it plans to release security updates for messaging software for Android and iOS devices by Friday to address vulnerabilities in programs related to the "Heartbleed" security threat. Researchers last week warned they uncovered Heartbleed, a bug that targets the OpenSSL software commonly used to keep data secure, potentially allowing hackers to steal massive troves of information without leaving a trace. Security experts initially told companies to focus on securing vulnerable websites, but have since warned about threats to technology used in data centers and on mobile devices running Google Inc's Android software and Apple Inc's iOS software. Scott Totzke, BlackBerry senior vice president, told Reuters on Sunday that while the bulk of BlackBerry products do not use the vulnerable software, the company does need to update two widely used products: Secure Work Space corporate email and BBM messaging program for Android and iOS.
Fri, 11 Apr 2014 20:30:14 -0400
A lot of people are having trouble saying goodbye to Windows XP even after Microsoft has cut off support for the ancient operating system. Earlier this week we gave XP fans some tips for how to keep Windows XP around even if they upgrade to Windows 8, but what about those XP diehards who just flat-out refuse to upgrade to a new OS? For those hardy souls, The Guardian has put together a handy guide for XP stragglers who still can’t let go but who also don’t want to be open to the barrage of malware that will now run completely rampant on their machines without Microsoft’s support. The most obvious way to keep your XP computer safe from malware is,
Fri, 11 Apr 2014 17:59:06 -0400
Fri, 11 Apr 2014 17:59:06 -0400
By Mark Hosenball and Will Dunham WASHINGTON (Reuters) - The White House and U.S. intelligence agencies said on Friday neither the National Security Agency nor any other part of the government were aware before this month of the "Heartbleed" bug, denying a report that the spy agency exploited the glitch in widely used Web encryption technology to gather intelligence. The White House, the NSA and the Office of the Director of National Intelligence issued statements after Bloomberg reported that the NSA was aware of the bug for at least two years and exploited it in order to obtain passwords and other basic information used in hacking operations. "Reports that NSA or any other part of the government were aware of the so-called Heartbleed vulnerability before April 2014 are wrong," White House National Security Council spokeswoman Caitlin Hayden said in a statement.
Fri, 11 Apr 2014 17:47:16 -0400
Amazon.com Inc is preparing to launch its long-rumored smartphone in the second half of the year, the Wall Street Journal reported on Friday, citing people briefed on the company's plans. The Internet retailer would jump into a crowded market dominated by Apple Inc and Samsung Electronics Co Ltd. The company has recently been demonstrating versions of the handset to developers in San Francisco and Seattle. Amazon has made great strides into the hardware arena as it seeks to boost sales of digital content and puts its online store in front of more users. Amazon recently launched its $99 Fire TV video-streaming box and its Kindle e-readers and Fire tablets already command respectable U.S. market share after just a few years on the market.
Fri, 11 Apr 2014 16:30:48 -0400
The "Heartbleed" bug has caused anxiety for people and businesses. Now, it appears that the computer bug is affecting not just websites, but also networking equipment including routers, switches ...
Fri, 11 Apr 2014 16:05:55 -0400
A federal appeals court on Friday unanimously threw out the conviction of an Arkansas man for stealing the personal data of about 120,000 Apple iPad users, including big-city mayors, a TV news anchor and a Hollywood movie mogul. The 3rd U.S. Circuit Court of Appeals said the prosecution of Andrew Auernheimer did not belong in New Jersey, hundreds of miles from his alleged crimes, and as a result, his November 2012 conviction and 41-month prison sentence could not stand. Writing for a three-judge panel, Circuit Judge Michael Chagares also admonished prosecutors that the Internet's "ever-increasing ubiquity" did not give the government carte blanche to prosecute cybercrime wherever it wishes. "Cybercrimes do not happen in some metaphysical location that justifies disregarding constitutional limits on venue." Auernheimer, who went by the names Weev, Weelos and Escher, had been convicted by a Newark jury of one count of conspiracy to violate the federal Computer Fraud and Abuse Act by accessing AT&T Inc servers, and one count of identity theft.
Fri, 11 Apr 2014 15:58:21 -0400
NEW YORK (AP) — It now appears that the "Heartbleed" security problem affects not just websites, but also the networking equipment that connects homes and businesses to the Internet.
Fri, 11 Apr 2014 15:38:41 -0400
The NSA knew about the Heartbleed, a security bug that potentially exposes sensitive consumer information, for about two years, according to Bloomberg. Citing "two people familiar with the matter," Bloomberg reports that the intelligence agency declined to make the security flaw public "in pursuit of national security interests." If Bloomberg's timeline is correct, then the NSA discovered the flaw almost as soon as it was introduced into the openSSL security protocols used by as much as two thirds of the web to secure traffic (learn more about Heartbleed here). When the bug became public knowledge on Monday, many speculated that the security flaw — which could potentially allow individuals to access passwords, credit card information, and other personal data from some "secure" servers — might have been something the NSA already knew about. Bloomberg's report is the first indication that the speculation is justified.
Fri, 11 Apr 2014 14:10:03 -0400
The Heartbleed software bug caught the web by storm, affecting a huge number of websites and online services that are now hurrying to patch the security bug. Internet users have little they can do right now, aside from checking whether the websites they access on a regular basis are affected in any way – especially those sites where they have user accounts – and then changing their passwords for those sites once they have been patched. Changing a password now would not have any effect on a site that’s still vulnerable to Heartbleed, as hackers would still be able to access passwords no matter how complex they’d be. With that said, however, people looking to set up stronger passwords than “password” or “123456” in
Fri, 11 Apr 2014 13:07:49 -0400
Nine people have been charged in an alleged international conspiracy that used malicious software to gather bank account details and use the information to steal millions of dollars, including from accounts held at a Nebraska bank, the Department of Justice said on Friday. Two of the defendants, both Ukrainian nationals who were living in the UK, have been extradited to face charges in Nebraska, the U.S. Justice Department said. A grand jury indicted the defendants in August 2012, but the indictment was not unsealed until Friday. The Zeus virus is a piece of malicious software that has been widely used to steal credit card information and other financial data.
Fri, 11 Apr 2014 12:18:25 -0400
Google changed the game when it launched Gmail almost exactly 10 years ago. The service offered a terrific minimal interface, plenty of storage and best of all, it was free. Gmail has evolved quite a bit since then, of course, and it now includes tons of new features that attempt to improve the user experience. Google has added so much to Gmail over the years, however, that there is probably a laundry list of great features that you don’t even know about. We could spend all day running through Gmail’s various enhancements along with dozens of tips and tricks people might not know about, but it would be complete overkill and probably wouldn’t help anyone. Instead, Popsugar has compiled a nice list of
Fri, 11 Apr 2014 11:09:22 -0400
The recently uncovered massive Heartbleed vulnerability affecting 66% of websites is currently being patched by many companies, but several online services already offer users the means to test whether a website is still affected by the Heartbleed vulnerability. However, checking to see whether a site uses flawed OpenSSL protocol is actually in violation of Internet laws and could land users in jail, at least theoretically, The Register reports. According to the U.S. Computer Fraud and Abuse Act, and the U.K. Computer Misuse Act, it is illegal to test the security of third-party websites without their permission. Therefore, Heartbleed testing, and any other security checks on a website such as the ones performed by security researchers, could be punished with jail time if such laws were actually enforced. “I would say
Fri, 11 Apr 2014 08:29:57 -0400
Fri, 11 Apr 2014 06:30:08 -0400
Following the revelation that hundreds of thousands of websites are susceptible to attacks based on the “Heartbleed” flaw in OpenSSL, Apple told Re/code that its operating systems including iOS and OS X, as well as unnamed “key” web-based services are not affected by the hack. “Apple takes security very seriously. IOS and OS X never incorporated the vulnerable software and key Web-based services were not affected,” an Apple spokesperson told the publication. While Apple would not say what those key web services are, 9to5Mac says it tested apple.com and various iTunes servers that host Apple’s online stores using an online tool that checks for Heartbleed and all of them are secure. The publication added that users who rely on a
Thu, 10 Apr 2014 23:49:56 -0400
Hackers stole the personal information of about 200,000 South Korean credit card users, using some to make fake cards and rack up fraudulent charges of about 120 million won ($115,400), an official of the country's financial regulator said on Friday. The Financial Supervisory Service (FSS) said in a statement several suspects had late last year hacked into a server of a firm managing card payment processing terminals, and extracted data such as numbers, expiry dates and passwords for a point-amassing loyalty card. The suspects exploited the fact that some users had the same pin number or password for both credit cards and the loyalty card to create fake cards and charge items earlier this year, an official with direct knowledge of the investigation said. South Korean police, who are leading the investigation, have so far identified 268 separate cases of wrongful charges, said the official, who declined to be identified as the probe is still underway.
Thu, 10 Apr 2014 23:00:19 -0400
Some longtime Windows XP users are having a hard time letting go of the operating system that has served them so well over the years, but The Register has discovered a way to keep Windows XP alive even if you’ve upgraded to Windows 8 or higher. Basically, The Register says you should start by downloading the free Windows XP mode emulator that unfortunately only works on Windows 7 Pro and above but that can still run on Windows 8 with just a few workarounds. Once you download Windows XP mode, you’ll have to choose a new virtual machine monitor (VMM) to run the program and The Register says both the VMWare Player and Oracle’s Virtual Box work just fine for these purposes.
Thu, 10 Apr 2014 19:03:55 -0400
By Jim Finkle BOSTON (Reuters) - Hackers could crack email systems, security firewalls and possibly mobile phones through the "Heartbleed" computer bug, according to security experts who warned on Thursday that the risks extended beyond just Internet Web servers. Developers rushed out patches to fix affected web servers when they disclosed the problem, which affected companies from Amazon.com Inc and Google Inc to Yahoo Inc. Yet pieces of vulnerable OpenSSL code can be found inside plenty of other places, including email servers, ordinary PCs, phones and even security products such as firewalls. Def Con's network uses an enterprise firewall from McAfee, which is owned by Intel Corp's security division.
Thu, 10 Apr 2014 17:57:00 -0400
(Reuters) - A group of investors is seeking to buy bankrupt bitcoin exchange Mt. Gox for a token payment of one bitcoin, or about $400, the Wall Street Journal reported citing sources. The group justified the near-zero price citing an "information vacuum" over Mt. Gox's missing bitcoins that made it hard to place a value on the lost digital currency, the paper said. The investor group includes Brock Pierce, a former child actor-turned entrepreneur, and venture capitalists William Quigley and Matthew Roszak. Mt. Gox said in March it "found" 200,000 bitcoins in an old-format online wallet which it had thought was empty, raising creditors' hopes of recovering some of their lost digital wealth.
Thu, 10 Apr 2014 17:26:27 -0400
WASHINGTON (Reuters) - U.S. financial regulators on Thursday told banks to upgrade their systems as soon as possible if they are vulnerable to the recently uncovered "Heartbleed" bug, which exposes data to hackers. The Federal Financial Institutions Examination Council, an interagency group that includes the Federal Reserve and the Federal Deposit Insurance Corp, said banks also should set up temporary patches for any systems using the Web encryption program known as OpenSSL and warn their outside service providers to take action. ...
Thu, 10 Apr 2014 16:45:52 -0400
MEXICO CITY (AP) — Police in Mexico City have issued a warning about a new type of "ransom ware" virus that can take over computers' cameras and make the user think they are under surveillance.