Russia to create its own security certificate authority, alarming experts
Security experts worry that Russia is opening the door to mass surveillance and disinformation.
'Critical' flaw in apps for Sennheiser headphones allows certificate access
The mistake means that hackers could decrypt the key and use the certificate, a means of digital authentication, to monitor victims’ traffic and launch main-in-the-middle attacks.
ISPs inside Turkey and Egypt spread FinFisher spyware in massive espionage campaign
New research by human rights advocacy organization Citizen Lab shows how products made by two Western technology contractors facilitated nationwide surveillance in multiple developing countries under authoritarian rule.
ISPs 'likely' helped infect targets of state surveillance
A spying tool known as FinFisher is involved in a seven-country campaign that most likely involves "complicit" internet providers helping to infect targets of surveillance, according to researchers with the cybersecurity firm ESET.
Lenovo settles FTC, state complaints on preinstalled invasive adware
The company will pay $3.5 million to settle state cases over VisualDiscovery, and will institute a security and privacy audit to satisfy the FTC, but denies wrongdoing.