Don't-Miss Stories

internet data

Five questions to answer before paying for a VPN

VPNs are great for privacy and jumping regional restrictions, but not all VPNs are created equal. Knowing some of the key differences can save you time and hassle.

Even encrypted Web traffic can reveal highly sensitive information

Merely knowing what pages a person views on a website can hint at their personal life

heartbleed primary

Two months later, Heartbleed patching stalls out with 300k servers still vulnerable

A large number of sites are still vulnerable to Heartbleed, but it's unlikely we'll see them get patched anytime soon.

encryption security lock 100052900 large

Google develops BoringSSL, its own 'boring' version of OpenSSL encryption

But fear not: This fork isn't intended to replace OpenSSL.

malware 0 100257425 orig 100309194 large

The 8 scariest digital security stories of 2014 (so far)

The year's only halfway done, but hackers have already filled enough headlines to last a decade.

Android 4.4.4 fixes OpenSSL hijacking vulnerability

A new version of Android for Nexus devices is primarily a security update that patches the bundled OpenSSL library

Nokia blackmailed in 2007 after digital key stolen

Someone blackmailed Nokia in 2007 by threatenting to leak a digital key the company used to sign Symbian applications, a news report says.

malware_piracy

Maliciously crafted files can disable Microsoft's security products

A vulnerability in the engine used by many Microsoft antimalware products can lead to a persistent denial-of-service condition

google encryption conceptual

Will full encryption sideline Google's targeted ads?

Mining personal data to deliver targeted ads is the lifeblood of Google's business -- and of many other online firms. But what if that data dries up at the source?

Popular websites still vulnerable to OpenSSL hijacking attack

A known critical vulnerability in OpenSSL can be exploited on over 20,000 of Internet's top 155,000 SSL sites, a researcher from Qualys said