Apple is working to fix an issue that makes it possible to read portions of encrypted email in macOS after an IT specialist discovered a flaw in the way Mail's messages are handled by Siri. The problem affects macOS versions from Sierra to Catalina.

It is important to note that there are a number of criteria that have to be met for the issue to rear its head, but the fact that it is possible at all is still a concern. For a company that has just been shouting about its privacy policies, the timing is less than ideal -- particularly as Apple has been aware of the problem since July.

Continue reading →

If you've ever expressed concern about the security implications of Amazon Ring connected doorbells; if you've ever voiced privacy concerns about letting Amazon have such a portal into your life... your fears have been justified.

It has just been revealed that a security flaw in the camera-toting devices made it possible for hackers to access customers' Wi-Fi usernames and passwords. With these credentials, it would then be possible to launch a wider privacy-invading attack on households, accessing all manner of data and devices on home networks.

Continue reading →

All of the big names in technology have faced questions and criticism over privacy. Apple is no different, and with an updated privacy website it seeks to distance itself from the controversy-addled likes of Facebook and Google.

The company has refreshed its privacy portal to provide a one-stop-shop for everything it feels people might want to know about the way it collects and handles data. While there are no changes to privacy policies, the updated site aims to present information in a more accessible and transparent format.

Continue reading →

Security firm Trend Micro has revealed details of an inside scam which led to personal details of its customers being exposed.

The security incident dates back to August this year, and the company says that it was made aware of customers being contacted by fake Trend Micro support staff. Following an investigation lasting until the end of October, it was determined that it was a member of staff that had fraudulently gained access to a customer database and sold personal data to a third party.

Continue reading →

Apple only released Catalina three weeks ago, and already there is a fairly significant update available -- macOS Catalina 10.15.1.

With this release, Apple adds support for the newly announced AirPods Pro as well as fixing a number of bugs. There are also new HomeKit options, enhanced privacy in Siri, and the arrival of more than 70 new or updated emoji, including gender-neutral options.

Continue reading →

Google has already revealed plans for Chrome which it says will increase privacy and security. DNS-over-HTTPS (DoH) was announced back in September, and the company is already worried that people are confused about the implementation.

The company has published a defensive blog post in which it says that "there has been some misinformation and confusion about the goals of our approach and whether DoH will impact existing content controls offered by ISPs". It goes on to try to dispel the incorrect beliefs it says have built up.

Continue reading →

A major problem for social media and other online businesses is the creation of spoof accounts. Guarding against these can be difficult but identity-as-a-service company Jumio has come up with a solution.

Jumio Go is a real-time, fully automated identity verification platform. It includes liveness detection to spot when photos, videos or even realistic 3D masks are used instead of actual selfies to create online accounts.

Continue reading →

The UK government's plans for age verification checks on porn site users, which were delayed in June of this year, have now been scrapped, the Department for Digital, Culture, Media and Sport announced today.

The checks would have required users to register a credit card or buy a 'porn pass' in order to access adult material online.

Continue reading →

We all know that standards of privacy and surveillance vary around the world. But which places are best at protecting your privacy?

Research from security testing site Comparitech finds that no single country is consistent in protecting the privacy of its citizens, most are actively monitoring citizens, and only five could be deemed to have 'adequate safeguards'.

Continue reading →

Online privacy and anonymity seem farther away from our reach than ever. It is almost as if every new advancement and progress in technology further removes another brick from an already flimsy wall of privacy on the web.

Although legislations such as GDPR were designed to protect user privacy and anonymity, these guarantees hold little weight against powerful technologies like machine learning which -- researchers have found -- can piece together anonymized information to form your complete identity.

Continue reading →

Due to the potentially crippling effect of security breaches and data loss on both the bottom line and a brand’s reputation it's vital for organizations to protect their users.

Increasingly, identity management has become central to building seamless, secure digital engagement platforms, differentiating products, and winning long-term loyalty. However there can be a trade off between security and performance.

Continue reading →

Twitter has announced that email addresses and phone numbers provided by users for use with two-factor authentication (2FA) have been "inadvertently" used to deliver tailored ads.

The company says it does not know how many people are affected by the incident, but apologizes for letting private data be used in this way. The timing of the announcement is a little strange. Twitter says that the matter was under control as of September 17, and it is not quite clear why it took three weeks to go public about it -- even though it says "in an effort to be transparent, we wanted to make everyone aware".

Continue reading →

Poor privileged access management practices that lead to people having too much access continue to be a critical challenge for many organizations despite significant risks of data breaches and security incidents.

A new report from technology consulting company Sila and the Ponemon Institute surveyed more than 650 North American respondents and finds 70 percent think it likely that privileged users within their organizations are accessing sensitive or confidential data for no discernible business need.

Continue reading →

Yesterday marked the start of not just Cybersecurity Awareness Month but also Domestic Violence Awareness Month.

Domestic abusers often make use of stalkerware (commercial spyware used as a tool for domestic espionage) to leverage their partner's digital footprint for physical control.

Continue reading →

Google has today announced a raft of a new privacy features across a swathe of its products and services.

Google Maps is going to benefit from a new Incognito Mode just like Chrome and YouTube. YouTube itself is gaining a new option for automated history deletion, and Google Assistant -- recently dragged through the privacy mud along with other digital assistants -- is also getting new deletion options.

Continue reading →