Don't-Miss Security Stories

Report: NSA facial recognition program collects 'millions' of photos from the Web

Newly leaked documents reveal a massive NSA program to collect and analyze photographs, according to the New York Times.

Global mobile roaming hub accessible and vulnerable, researchers find

Two security researchers from KPN found vulnerable hosts in the GPRS Roaming Exchange that can be attacked from the Internet.

federal trade commission building ftc

House panel investigating FTC data breach enforcement

Lawyers say the House Oversight Committee is investigating a P-to-P security vendor tied to the agency.

IBM patents technique for killing fraud, using click patterns

A new technology would pick up on suspicious changes in people's online activity

PCWorld News

Cloud provider FireHost's security chief brings lessons from the front lines

Chief Security Officer Jeff Schilling ran security at the US Army and Department of Defense

safeafterxpdies2 primary 100248300 large

Windows XP registry hack keeps security updates rolling for the dead operating system

Microsoft, unsurprisingly, thinks you should just upgrade already.

New attacks defeat Secure Boot and brick PCs

Security researchers from Mitre found new ways to defeat the Secure Boot feature in UEFI and install boot-level rootkits

PCWorld News

Hackers put security tool that finds payment card data into their arsenal

Cracked versions of Card Recon, a PCI compliance tool, have been found in malware

PCWorld News

Massive Flash exploit campaign directed at Japan seeks financial data

Legitimate websites in Japan have been compromised to serve up malicious code, Symantec said

heartbleed primary

Tech giants throw money at OpenSSL in response to Heartbleed

Crucial open-source projects including OpenSSL will get at least $5.4 million in funding over three years.

PCWorld News

Vessel-tracking system vulnerable to denial-of-service, other attacks, researchers say

Attackers could disable Automatic Identification System communications over large areas or send fake localization information to ships

PCWorld News

Iranian group created fake news organization as part of hacking campaign

Active since 2011, the group targeted more than 2,000 U.S. military members, defense contractors and lobbyists, iSight Partners said

PCWorld News

Call recording software used by police is deeply flawed, advisory says

Organizations using Nice Recording eXpress should shut it down until it is fully repaired, SEC Consult said