Security News, Features, and Interviews

• UK seeks to limit Brexit effect on personal data flows

  With a new round of Brexit negotiations beginning Monday, the U.K. is seeking to ensure that businesses sending personal information to or through the UK are not left stranded when the country leaves the EU.

• How Windows to Go can protect data for business travelers

  Worried about workers traveling internationally with sensitive company data on a laptop? A Windows to Go USB stick might be the answer for intrusive searches or bans on airplanes.

• The rise of remote risk: Three trends increasing your threat profile

  Technology has fundamentally changed the face of our workplaces.

• Can Microsoft lawyers defeat Putin’s most notorious spy-hackers?

  The courtroom tactic should at least slow Fancy Bear down.

• Scam warning: Scammers claiming to be from ‘Techworld’

  A number of readers have reported receiving calls from people claiming to be employers of ‘Techworld’ and offering technical support.

• Mingis on Tech: The language of malware

  When it comes to tracking down the bad actors behind malware and ransomware, cybersecurity firms are turning to linguists.

• Campaigners ask US court to reveal extent of spying by Five Eyes Alliance

  Privacy International asks court to compel the U.S. government to reveal the extent of its eavesdropping activities, and the legal basis for them.

• The ancient Microsoft networking protocol at the core of the latest global malware attack

  The company is going to kill off SMB1 at long last, but you shouldn’t wait to disable it.

• Ukrainian police seize computers that spread global NotPetya attack

  Ukraine's Cyber Police have intervened to prevent further cyberattacks in the wake of last week's "ransomware" attack.

• How to secure your CMS without patching

  In as little as four hours, the bad guys can reverse engineer a software patch for an open-source content management system (CMS) and build an exploit capable of turning millions of websites into spammers, malware hosts or DDoS attackers. A German project aims to beat the bad guys to it, without a patch.

• The Microsoft security hole at the heart of Russian election hacking

  We’re reliving the Visual Basic-spawned bad times of 1999.

• Dual biometrics may just be the authentication answer we need

  It solves a big problem with biometric authentication and opens up some intriguing possibilities.

• Answering the WannaCry wake-up call

  Organizations can take steps to better protect themselves from future disruptions from ransomware.

• The WannaCry scramble

  A widespread ransomware attack propagating as a worm was a legitimate cause of alarm.

• Review: The 6 best password managers

  Look to these Windows, MacOS, iOS, Android, and web tools to make your passwords stronger and your online life easier

• Former NSA chief weighs in on cybersecurity, cyberespionage at ZertoCon

  Retired Gen. Michael Hayden held nothing back when addressing cybersecurity pros at the ZertoCon conference in Boston.

• 5 ways to stop future global malware attacks

  Governments, vendors and user companies all can do more.

• Shadow Brokers teases more Windows exploits and cyberespionage data

  A group of hackers that previously leaked alleged NSA exploits claims to have even more attack tools, as well as intelligence gathered by the agency on foreign banks and ballistic missile programs.

• WannaCry: Sometimes you can blame the victims

  Last week’s big malware outbreak caused a lot of damage, but organizations that made good decisions ahead of time weren’t affected.

• Facebook hit with maximum fine for breaking French privacy law

  The French data protection watchdog has imposed its harshest penalty on Facebook for six breaches of French privacy law.