Identity & Access

Identity & Access news, information, and how-to advice

Arrests made after international cyber-ring targets StubHub

StubHub accounts were compromised and used to buy tickets for popular events, which were then resold

Tor Project working to fix weakness that can unmask users

The anonymity software's developers believe they've identified the problem


Dutch spy agencies can receive NSA data, court rules

Because raw data is shared in bulk, less stringent privacy safeguards apply, the court said

internet gavel keyboard

Duo sentenced to 14 years for Apple Phishing scheme

Two people have been sentenced to a total of 14 years in prison for conducting a Phishing campaign that targeted banking details. The criminals accused, Constanta Agrigoroaie, 23, and Radu Savoae, 28, used the stolen funds as a means...

US court says warrant for access to all content of email account is justified

The government was granted a warrant to obtain emails and other information from a Gmail account

snowden sxsw

NSA whistleblower Edward Snowden plans to work on easy-to-use privacy tools

Edward Snowden has some plans for the future and they include making privacy and encryption tools easier to use

Net neutrality a key battleground in growing fight over encryption, activists say

Both carriers and government now have an interest in how users keep their online lives private

Why '123456' is a great password

New research shows that "123456" is a good password after all.

Chaos Computer Club bolsters NSA spying complaint with Tor snooping evidence

The Chaos Computer Club wants new evidence to prompt an investigation into mass surveillance of German citizens

BC Health Ministry hacked

It appears that the British Columbia has suffered a privacy breach involving their PhamaNet system.

Why the Microsoft Active Directory design flaw isn't serious

Experts are skeptical of the seriousness of a reported design flaw in Microsoft Active Directory, which is used by many enterprises to control employee access to the corporate network.

security phishing

E-ZPass drivers warned about Phishing scam

E-ZPass Group, a toll collection program consisting of 25 agencies in 15 states, has issued a warning to customers concerning a Phishing scam that is posing as a collection notice.

Critical design flaw in Active Directory could allow for a password change

Microsoft contends the general issue has been long-known, but Israel-based Aorato has developed a working attack

Why password managers are not as secure as you think

University researchers have raised concerns about the security of web-based password managers that free people from the burden of having to remember website credentials.

EA dismisses claim its Origin software spies on users

A screenshot posted on Reddit does not represent information collected by Origin, an EA spokeswoman said

big data 19

Securing big data off to slow start

While big data implementations have taken off, the work needed to secure these systems has not.

big brother

Wearables: Are we handing more tools to Big Brother?

The growth of wearables, especially fitness trackers, is explosive - users love the convenience of tracking not only their workouts but their sleep patterns and other health-related information. But privacy experts warn that the...

There's still a security disconnect on BYOD

Companies are implementing BYOD security policies, but surveys find that many workers aren't following them

security phishing

Campaign targeting user credentials discovered after five years

Researchers at Cyphort Labs have discovered a campaign that is actively targeting usernames and passwords, and has done so undetected since 2009.

Botnet brute-forces remote access to point-of-sale systems

A new malware threat scans the Internet for POS systems and tries to access them using common usernames and passwords

Load More