Month: July 2016

NIST Explains Proposed Ban on SMS for 2FA
Authentication, Privacy

NIST Explains Proposed Ban on SMS for 2FA

A few days after releasing draft authentication guidelines that propose deprecating SMS as a second factor for authentication, NIST officials provided more context on the move, saying it’s a result of advances in attacks and shifts in the threat landscape. Earlier this week, NIST, which sets technical standards for government […]

Judge Rules Political Robocalls Are Legal
Phone Fraud, Vishing

Judge Rules Political Robocalls Are Legal

A federal judge has ruled that robocalls made on behalf of political candidates are protected by the First Amendment and cannot be outlawed. The decision came in a case in Arkansas, where political robocalls had been illegal for more than 30 years. On Wednesday, U.S. District Court Judge Leon Holmes ruled that […]

LastPass Patches Remote Compromise Flaw
Authentication

LastPass Patches Remote Compromise Flaw

LastPass has patched a remote compromise vulnerability disclosed this week by a Google researcher, a bug that could be used to gain full access to Firefox users’ LastPass data. The vulnerability lies in the LastPass extension for Mozilla Firefox, and researcher Tavis Ormandy of Google, who discovered the bug, found […]

Android Nougat to Include Upgraded Security
Device Security

Android Nougat to Include Upgraded Security

As attacks on mobile devices continue to evolve and become more sophisticated, Google is enabling new security mechanisms in Android, including a number of additional memory protections and an extension of the operating system’s sandbox. The next version of Android, known as Nougat, will benefit from these security upgrades, which are designed to […]