General Cyber News via Ars Technica Risk Assessment

Secret chips in replacement parts can completely hijack your phone’s security

Booby-trapped touchscreens can log passwords, install malicious apps, and more.
Publish Date: 8/18/2017
read more -->

Building America’s Trust Act would amp up privacy concerns at the border

Civil libertarians tell Ars they’re worried about “mass surveillance expansion.”
Publish Date: 8/15/2017
read more -->

After phishing attacks, Chrome extensions push adware to millions

Compromised accounts push fraudulent extension updates to unsuspecting users.
Publish Date: 8/3/2017
read more -->

Microsoft expands bug bounty program to cover any Windows flaw

Now every part of Windows is covered by a bug bounty scheme.
Publish Date: 7/26/2017
read more -->

Windows 10 will try to combat ransomware by locking up your data

But how to protect files from users who have access to those files remains tricky.
Publish Date: 6/29/2017
read more -->

Ryzen Pro: AMD takes on Intel on the corporate desktop, with one key omission

AMD wants to go after Intel vPro while avoiding Intel's excessive product segmentation.
Publish Date: 6/29/2017
read more -->

Microsoft bringing EMET back as a built-in part of Windows 10

The built-in exploit mitigations are getting stronger and easier to configure.
Publish Date: 6/27/2017
read more -->

Windows 10 S security brought down by, of course, Word macros

Analysis: Windows 10 S promises many good things. It currently doesn't deliver.
Publish Date: 6/23/2017
read more -->

Check Point says Fireball malware hit 250 million; Microsoft says no

Either way, Microsoft assures us that Windows 10 S would have been immune.
Publish Date: 6/23/2017
read more -->

Microsoft’s decision to patch Windows XP is a mistake

There will always be one more emergency.
Publish Date: 6/14/2017
read more -->

Sneaky hackers use Intel management tools to bypass Windows firewall

Serial ports don’t have firewalls.
Publish Date: 6/9/2017
read more -->

Radio-controlled pacemakers aren’t as hard to hack as you (may) think

The four major makers aren't properly securing critical cardiac devices, report says.
Publish Date: 5/26/2017
read more -->

Cockpit access codes for United Airlines spill online

"The safety of our customers and crew is our top priority," United says.
Publish Date: 5/15/2017
read more -->

Punching holes in nomx, the world’s “most secure” communications protocol

Extraordinary claims require extraordinary proof, and nomx implodes under scrutiny.
Publish Date: 4/27/2017
read more -->

Microsoft turns two-factor authentication into one-factor by ditching password

As long as you can log in to your phone, you can log in to your Microsoft Account.
Publish Date: 4/19/2017
read more -->

Meet PINLogger, the drive-by exploit that steals smartphone PINs

Sensors in phones running both iOS and Android reveal all kinds of sensitive info.
Publish Date: 4/18/2017
read more -->

Windows admins, has Microsoft completely screwed up its security reports?

The old bulletins are gone, and now there's a searchable database.
Publish Date: 4/17/2017
read more -->

Lawyers, malware, and money: The antivirus market’s nasty fight over Cylance

On the front lines of the antivirus industry's "testing wars."
Publish Date: 4/17/2017
read more -->

New processors are now blocked from receiving updates on old Windows

The promised update block is now in effect.
Publish Date: 4/13/2017
read more -->

Microsoft Word 0-day used to push dangerous Dridex malware on millions

Blast could give a boost to Dridex, one of the Internet's worst bank fraud threats.
Publish Date: 4/11/2017
read more -->