Privacy

Google to Drop Trust For WoSign in September
Hacking, Privacy

Google to Drop Trust For WoSign in September

Google has finalized its plan to remove trust in Chrome for all certificates issued by Chines CA WoSign, a result of the certificate authority run afoul of the intricate rules that govern CAs. As far back as 2015, officials began noticing certificates issued by WoSign that had one or more […]

National Security Letter Gag Orders Legal, Appeals Court Rules
Privacy

National Security Letter Gag Orders Legal, Appeals Court Rules

In a decision that has drawn the ire of technology providers and privacy advocates, a United States appeals court has ruled that National Security Letters and the gag orders that often come with them don’t violate the First Amendment. The ruling came down Monday and from the Ninth Circuit Court of […]

Verizon Says Data Breach Exposure Limited
Hacking, Identity, Privacy

Verizon Says Data Breach Exposure Limited

Verizon has acknowledged that millions of customer records, including phone numbers and account PINs, were exposed in a misconfigured cloud database, but says no one aside from a security researcher accessed the data. The data was in an Amazon cloud bucket administered by a third-party vendor used by Verizon in […]

How Google Analyzes the Security and Privacy Behavior of Android Apps
Privacy

How Google Analyzes the Security and Privacy Behavior of Android Apps

Google has developed a new classification algorithm for mobile apps in the Play store that enables the company to group apps together based on their relative security characteristics and help users better understand what they’re installing. Known as peer group analysis, the technique relies on Google’s deep insight into the apps in […]

Free Wildcard Certificates Coming From Let’s Encrypt
Authentication, Privacy

Free Wildcard Certificates Coming From Let’s Encrypt

Let’s Encrypt, the certificate authority that provides free digital certificates for site owners, plans to expand its service soon by offering wildcard certificates, as well, beginning in January. The move is designed to enable site owners to secure their main domain, along with as many subdomains as they own, with just one […]

FCC Ringless Voicemail Petition Is Dead
Privacy

FCC Ringless Voicemail Petition Is Dead

A company seeking to exempt ringless voicemails from rules that govern the use of robocalls has withdrawn the petition it submitted to the FCC. A marketing firm called All About the Message filed the petition in March, asking the FCC to declare that ringless voicemails aren’t actually calls. The petition contends […]

EU Parliament Seeks Ban on Crypto Backdoors
Privacy

EU Parliament Seeks Ban on Crypto Backdoors

The European Parliament is considering a draft proposal that would effectively prohibit the introduction of backdoors in encryption systems and other kinds of interference with confidential information. The proposal, introduced before the European Parliament’s Committee on Civil Liberties, Justice and Home Affairs, comes at a time when legislators in a number […]

California Lawmaker Seeks to Restore Broadband Privacy Rule
Privacy

California Lawmaker Seeks to Restore Broadband Privacy Rule

Three months after Congress voted to repeal some privacy protections that prevented ISPs from sharing customers’ browsing history and other sensitive data without consent, a California legislator has introduced a bill in the state assembly that would restore those protections. The federal legislation passed in March essentially rolled back a […]

Democrats Ask FCC to Dump Ringless Voicemails
Privacy, Social Engineering

Democrats Ask FCC to Dump Ringless Voicemails

A group of Democrats is asking the FCC to prevent robocalls telemarketers and political candidates from being able to use ringless voicemails to deliver their messages to consumers. The use of ringless voicemails is a controversial technique, because it allows callers to deliver voicemails directly to consumers without actually ringing […]