security

Why now's the time to finally take the VPN plunge

Reviews

By Phil Nickinson, Wednesday, May 31, 2017 at 9:30 am EDT

A good VPN isn't as complicated as it used to be, but it's still a pretty big step for a 'regular' user to take.

How to 'shred' digital files and make sure they're permanently deleted

Help & How To

By Rich Edmonds, Wednesday, Mar 15, 2017 at 7:00 am EDT

When it comes to data, recycling leaves traces of information on storage drives that can be retrieved using special software. However, this scenario can be avoided by "shredding" data rather than simply emptying your recycle bin. Here's how.

Cloudbleed: What you need to know and what you need to do

News

By Jerry Hildenbrand, Friday, Feb 24, 2017 at 3:10 pm EST

Cloudflare has had a sizeable data leak. Here's what that means for you.

The Microsoft Authenticator app is now available, but only for those on Windows 10 Mobile 'Redstone'

Apps

By Daniel Rubino, Wednesday, Jun 8, 2016 at 10:39 am EDT

Microsoft's new 2FA Authenticator app is live in the Store for Windows 10 Mobile, but only for those on newer Redstone builds. The app is expected to be available for all with the forthcoming Windows 10 Anniversary Update this summer.

FTC, FCC want to know more about how carriers and manufacturers issue security updates

News

By Dan Thorp-Lancaster, Monday, May 9, 2016 at 2:24 pm EDT

The FCC and FTC have launched a fact-finding mission of sorts to learn more about how carriers and device manufacturers issue security updates to phones, tablets and other mobile devices.

142

Millions of Microsoft accounts said to be impacted by email data breach

News

By Joseph Keller, Wednesday, May 4, 2016 at 2:59 pm EDT

A data breach has reportedly seen the theft of the login credentials for millions of email accounts, including Microsoft accounts.

New security flaws discovered in QuickTime for Windows, and Apple isn't going to fix them

Windows Apps

By Dan Thorp-Lancaster, Thursday, Apr 14, 2016 at 11:40 pm EDT

Security firm Trend Micro has revealed that Apple has deprecated QuickTime for Windows, leaving two new critical vulnerabilities unpatched.

Microsoft will now alert you if your account is being targeted by governments

Microsoft News

By Rich Edmonds, Thursday, Dec 31, 2015 at 4:21 am EST

Microsoft has announced on the official company blog that additional steps will be taken to ensure customer data is kept private and secure, which will be added on top of the work already carried out by Microsoft to prevent unauthorized access to accounts.

Microsoft to encrypt Bing searches by default

News

By Rich Edmonds, Tuesday, Jun 16, 2015 at 9:33 am EDT

Microsoft today announced plans to encrypt Bing searches by default, adding a layer of security for surfers who utilize the company's search engine. TLS support will be added to expand encryption across networks and services.

Microsoft, Apple, and Google urge President Obama to throw support behind smartphone encryption

News

By Joseph Keller, Tuesday, May 19, 2015 at 10:11 am EDT

Microsoft, Apple, and Google are among the technology companies and security experts calling for President Obama to reject proposals that would compromise security and encryption on smartphones.

Internet Explorer has a security flaw when copying masked passwords on Windows Phone (Update)

Windows Phone News

By Daniel Rubino, Tuesday, Mar 24, 2015 at 2:56 pm EDT

Information security is always one of those topics that is hard to report on, especially with the sheer number of devices available today. The problem lies in what is dangerous, what is bad, or what is no-big-deal. Frankly, opinions vary on the risks and threats involved.

One neat feature in Windows Phone is the ability to select text and hit the Search key. The Windows Phone OS copies the information over to Bing (or Cortana), and it lets you search without having to copy/paste the selection. It is super useful and certainly convenient for speedy searches.

However, there does seem to be one instance where this feature works where it should not: password fields.

CIA program sought to compromise security of Microsoft's BitLocker

News

By Joseph Keller, Tuesday, Mar 10, 2015 at 2:27 pm EDT

More information has come to light on government surveillance, with new information revealing a campaign by the CIA to break through security on devices from Apple and Microsoft. Researchers working with the agency would apparently present their latest efforts at a yearly meeting called the "Jamboree".

Gemalto denies 'massive theft' of SIM card encryption keys by NSA and GCHQ [updated]

News

By Harish Jonnalagadda, Wednesday, Feb 25, 2015 at 4:41 am EST

Update: A new report in The Intercept claims that Gemalto is drastically downplaying the effects of this attack. In the report, several security researchers came to the conclusion that "the company made sweeping, overly-optimistic statements about the security and stability of Gemalto's networks, and dramatically underplayed the significance of the NSA-GCHQ targeting of the company and its employees."

Original story: Digital security vendor Gemalto revealed its findings today following last week's report of an incursion by the NSA and the GCHQ into the vendor's SIM card encryption keys. While Gemalto noted that an operation by NSA and GCHQ "probably happened" in 2010 and 2011, the intrusion could not have resulted in a "massive theft" of SIM card encryption keys as the breach affected the company's office network and not its secure networks.

SIM card manufacturer Gemalto says its products are secure following NSA hack

News

By Harish Jonnalagadda, Monday, Feb 23, 2015 at 5:54 am EST

Digital security vendor Gemalto has announced that its products are "secure" following a report last week stating that the NSA and its UK counterpart, the Government Communications Headquarters (GCHQ), hacked into the vendor's SIM cards.

Lenovo releases automatic removal tool for Superfish; issues updated statement

By Dan Thorp-Lancaster, Friday, Feb 20, 2015 at 8:46 pm EST

Lenovo has just released an automatic removal tool for the Superfish software it pre-installed on some of its notebooks in 2014. This follows a manual procedure that the company detailed yesterday, and an update to Microsoft's Windows Defender from this morning that will also remove the software and its root certificate.

183

The NSA and GCHQ gave themselves a direct line into your phone

News

By Dan Thorp-Lancaster, Thursday, Feb 19, 2015 at 4:09 pm EST

According to new documents leaked by Edward Snowden, the NSA and its UK counterpart, Government Communications Headquarters (GCHQ), hacked into the computers of Gemalto, a company that manufactures SIM cards for a large number of carriers around the world. In doing so, the intelligence agencies acquired encryption keys that would allow them to intercept communications from customers of all four major U.S. carriers, along with 450 others around the world.

187

Forget bloatware, Lenovo is installing adware on new PCs

Windows

By Harish Jonnalagadda, Thursday, Feb 19, 2015 at 4:27 am EST

If you bought a Lenovo computer recently, chances are it may have come with factory-installed adware. The world's largest PC manufacturer was found to install an adware called Superfish — which injects third-party ads on Google search results and other websites — on new machines.

400

Google security researcher outs another exploit in Windows 8.1 and 7

Windows

By Dan Thorp-Lancaster, Friday, Jan 16, 2015 at 9:32 pm EST

After having outed a vulnerability in Windows a few weeks ago, Google is at it again. This time a Google security researcher detailed another vulnerability in in both Windows 8.1 and Windows 7. Similar to the exploit that Google previously detailed, this vulnerability could allow a user to impersonate another ID, allowing encryption and decryption of data he or she otherwise wouldn't have access to.

112

Unpatched vulnerability in Windows 8.1 gets published

News

By Joseph Keller, Wednesday, Dec 31, 2014 at 12:43 pm EST

An unpatched vulnerability in Windows 8.1 has been disclosed on Google Security Research. The issue was subject to a 90-day automatic disclosure policy, meaning the existence of the vulnerability is published after 90 days without a broadly available patch for the issue. The issue allows for privilege elevation in ahcache.sys/NtApphelpCacheControl.

T-Mobile quietly upgrades 2G network security

News

By Joseph Keller, Tuesday, Oct 28, 2014 at 10:17 am EDT

T-Mobile US is quietly upgrading the security of their older 2G network, moving to more advanced encryption that prevents eavedropping. The new, more secure network has already been deployed in at least three locations, New York, Washington, and Boulder, Colorado. The T-Mobile 2G network has previously relied on older A5/1 encryption, with the new security standard known as A5/3.

All the backward compatible original Xbox games confirmed for Xbox One

What if there really are no more new Windows Mobile devices?

Windows 10 Fall Creators Update's top 5 features

Comparing performance and battery in the Surface Laptop Core i5 and Core i7

7 tips to protect your Windows PC against malware

What do you think of Skype's new Snapchat-esque makeover? (poll)

How important is 4K gaming on the Xbox One X to you?

Microsoft's latest device lineup truly (and finally) rivals Apple's

Own an older Surface? Here's what you should know about the new Surface Pen

Wondering why ALL Microsoft's Windows drivers are dated June 21?

Spotify shows the world how to do Centennial apps the right way

Here's how the Xbox One X stacks up to Xbox One S and PS4 Pro

Before buying a Microsoft laptop, check out our pick for the absolute best

Share your experiences with Microsoft tech support for Windows 10 Mobile

What to expect from ‘Xbox One X Enhanced’ games

Ashen for Xbox One was the best game we saw at E3 — here's why

Will Apple beat Microsoft to the AR punch?

The updated ThinkPad X1 Tablet has a few unfortunate flaws

Windows 10 Fall Creators Update: Everything we know so far

Are you a fan of the Alcantara on Microsoft Surfaces and Type Covers?

Pages