Security

The latest forum to leak, Disney's Playdom, was running the vBulletin forumware already known to have leaked big back in June.

China, the Philippines and Vietnam are embroiled in a bitter dispute over territory claims in the South China Sea (a court has ruled that China's claims are illegal), and that appears to have led to some audacious cyberattacks on July 29th. Vietnam's state media claims that hackers compromised both the website of Vietnam Airlines and the flight info screens at both the Hanoi and Ho Chi Minh City international airports.

A hack of your computer is bad enough, but how about your lights?

Security researchers at Rapid7 discovered several vulnerabilities in the Osram Sylvania Lightify products. One of the more concerning bugs would have allowed an attacker who stole a device with access to the app to see a home network's Wi-Fi pre-shared key in plain text. In addition, Rapid7 discovered that attackers could conduct man-in-the-middle attacks and expose a person's traffic to the hacker. Rapid7 even found issues that could allow hackers to change lighting and reconfigure a lighting setup.

To bankers, Donald Trump's comments Wednesday encouraging Russian hackers were a bit like someone tweeting out the address to an already-packed party.

As it stands, the cybersecurity climate is an all-hands-on-deck situation, so one more threat — even one prompted by one of the loudest voices in the country — may not matter much.

Password managers are generally a much safer option than reusing the same password for every online account, but it doesn't take a genius to discern their major flaw. Keeping all of your passwords in one place means there's only one potential point of failure, which is how one security researcher fooled LastPass, the most widely used password manager, into giving him passwords to just about everything.

The new Moto Z Force Edition and Moto Z reviews went live late last week.

One surprising note made in the Ars Technica review was that Motorola would not be providing monthly Android security updates for the Moto Z.

Motorola reached out and issued this statement regarding monthly updates, "Moto Z and Moto Z Force will be supported with patches from Android Security Bulletins. They will receive an update shortly after launch with additional patches."

Sometimes, the fierce competition in the booming crypto ransomware market works in the favor of the victims whose priceless data is held hostage. That appears to be what played out on Tuesday when the criminals behind a package known as "Mischa" published what's purported to be the secret crypto keys for the rival Chimera malware.

That handy health app on your phone—the one with access to your medical history, your doctor’s name, even your home address—may be vulnerable to hackers. Technology experts discussed the risks at a House hearing July 14 with the Energy and Commerce subcommittee.

L33tdawg: Bas Venis (@bugroast on Twitter) has released a full POC you can check out here.

A key guarantee provided by HTTPS encryption is that the addresses of visited websites aren't visible to attackers who may be monitoring an end user's network traffic. Now, researchers have devised an attack that breaks this protection.

Researchers at security firm Bastille warn that many wireless keyboards can be very easily intercepted so hackers can see exactly what is being typed. With a very simple dongle called Keysniffer, it is possible to snoop on usernames, passwords and anything else that is being typed from up to 250 feet away.