Ted Livingston, founder/chief executive of messaging app Kik, is a Bitcoin enthusiast — so much so that he plans to debut his own cryptocurrency, dubbed Kin and based on the Ethereum network, later this summer. The company plans what is called an initial coin offering (ICO), which lets startups create their own digital money, raise funds via crowdsourcing, and thus develop their own cyber economies. Livingston had previously launched another cryptocurrency, Kik Points, in 2014, which ended its run in the fall. Continue reading Chat App Kik Plans Debut of Ethereum-Based Cryptocurrency

Hackers are reportedly targeting third-party sellers on Amazon by using stolen email and password credentials (available for purchase from previous hacks via the “Dark Web”) in a scam to post fake product deals online and pocket cash. Thieves have changed the bank info of active sellers on Amazon to steal amounts up to tens of thousands from each and have hacked less active sellers to post merchandise that does not exist, offering products at steep discounts. While PayPal and eBay have been targeted by hackers in the past, cybersecurity experts indicate that Amazon is becoming a new target. Continue reading Third-Party Sellers on Amazon Become Latest Hacking Target

AOL chief executive Tim Armstrong tweeted that Verizon is combining AOL and Yahoo into a new unit called Oath. Sources say that Yahoo chief executive Marissa Mayer will not be part of the new company, which will be helmed by Armstrong. Given Yahoo’s hacking disasters and slumping business, Mayer’s departure was anticipated, but it is not clear whether she’ll receive her full payout, reportedly worth tens of millions. Sources also say Armstrong is now choosing which top Yahoo executives to retain. Continue reading Verizon to Integrate AOL, Yahoo Into New Unit Dubbed Oath

WikiLeaks released thousands of documents yesterday that it claims detail methods used by the CIA “to break into smartphones, computers and even Internet-connected televisions,” reports The New York Times. According to WikiLeaks, the CIA and allied intelligence services bypassed encryption on messaging services including Signal, Telegram and WhatsApp. WikiLeaks also suggests that agencies can collect audio and messaging data from Android phones “before encryption is applied.” The Wall Street Journal notes that such activities, if actually taking place with consumer electronics, could fuel tensions between intelligence agencies and the tech industry, which has been concerned about customer privacy. Mobile devices are a major concern; NYT published an article detailing potential smartphone vulnerabilities. Continue reading WikiLeaks Claims of CIA Hacking Could Impact Tech Industry

After a 2-to-1 vote, the FCC put a halt to a portion of the privacy rules passed in October. New FCC chair Ajit Pai said those rules required high-speed Internet providers, such as AT&T and Comcast, to secure their customers’ data against hacking and other unauthorized uses. This stay of new government rules may be a foreshadowing of a broader repeal of privacy protections, believe some experts. In line with that, Pai also stated that the Federal Trade Commission, not the FCC, should “oversee broadband and Internet industries.” Continue reading FCC: Pai Halts Privacy Rules, Foreshadowing Broader Repeal

Yahoo has issued another warning that users’ personal data may have been compromised. In addition to the malicious activity reported in December that involved more than 1 billion user accounts in 2013-2014, following the September report regarding a separate theft of 500 million records, the Internet company is now notifying users that additional accounts were compromised between 2015 and 2016. “The stolen data included email addresses, birth dates and answers to security questions,” reports CNBC. The hacks involved “the use of ‘forged cookies’ — strings of data which are used across the Web and can sometimes allow people to access online accounts without re-entering their passwords.” Continue reading Yahoo Warns Users: Hackers Forged Cookies to Access Data

Yahoo announced that board members, including CEO Marissa Mayer and co-founder David Filo, would step down from the board of directors once the company’s core Internet assets are sold to Verizon. What remains of the company after the sale is completed would be renamed Altaba (combining “alternate” and “Alibaba”). “Altaba’s remaining assets include Yahoo’s stake in Alibaba Group Holding Ltd. and Yahoo Japan,” reports The Wall Street Journal. Board member Eric Brandt, former CFO of Broadcom, will become Altaba’s chairman. Mayer “is expected to remain with Yahoo once it becomes part of Verizon.” The deal will cost Verizon about $4.8 billion, unless terms are changed due to two recent high-profile hacks of user data.  Continue reading New Name for Yahoo After Verizon Sale, CEO to Leave Board

At a CES CyberSecurity Forum, journalist/author Wayne Rash led a discussion on the various ways that companies are failing to protect their intellectual property and remain vulnerable to malicious code and ransomware. According to Yubico chief executive Stina Ehrensvard, 70 percent of hacks are related to passwords. “The password is the weak link,” agrees Authentic8 chief executive Scott Petry. “Reusing passwords is a problem. If you use your Yahoo password for other sites, you’re in trouble.” Continue reading Cybersecurity and How to Build Speed Bumps Against Hackers

In September, Yahoo revealed a 2014 security breach that involved 500,000 of its users’ accounts. Now the company has announced an even larger data breach from 2013 involving more than one billion accounts, including those of more than 150,000 government and military employees. “The two attacks are the largest known security breaches of one company’s computer network,” reports The New York Times. “The newly disclosed 2013 attack involved sensitive user information, including names, telephone numbers, dates of birth, encrypted passwords and unencrypted security questions that could be used to reset a password.” Continue reading Yahoo: Second Data Breach Involves 1 Billion User Accounts

The free encrypted messaging app Signal is gaining users, not just because privacy advocates and security researchers have all given it a seal of approval. The app, available for smartphone and computer, is a bulwark against hacking, which got a national spotlight when WikiLeaks posted emails from Hillary Clinton campaign chair John Podesta. Others fear increased government surveillance under the incoming President Donald Trump, a reaction to Trump’s choice of CIA chief, Mike Pompeo, who advocates just that. Continue reading Signal Emerges as a Must-Have Hacker-Proof Messaging App

AOL is planning to release 5 percent of its staff today, affecting about 500 employees. “CEO Tim Armstrong said that most of the cuts will come in its corporate units, while resources will be shifted more at mobile, video and data offerings going forward,” reports Recode. AOL, which was purchased last year by Verizon, recently added 1,500 employees from its ad deal with Microsoft and acquisition of Millennial Media. AOL’s current structure features its media unit (with properties such as Huffington Post and TechCrunch) and its platforms groups, which includes its advertising tech. “Armstrong said the layoffs are not related to current discussions AOL execs are having with Yahoo counterparts about integration between the two companies,” notes Recode. Continue reading AOL Layoffs Reflect New Emphasis on Mobile, Video and Data

Until now, people risked a lawsuit if they reverse-engineered their cars, PCs or even insulin pumps. Now, there’s an exemption to the Digital Millennium Copyright Act that protects those who want to hack a device they own, without fearing that the manufacturer of that device will sue them. More specifically, the exemption covers security research on consumer devices, and digital repair of vehicles. The Library of Congress’ Copyright Office enacted the exemption in October 2015, but implementation was delayed for a year. Continue reading Copyright Act Exemption to Reverse Engineering Takes Effect

Six years ago, the Chinese military hacked Google, Yahoo and other technology companies. Google, whose co-founder Sergey Brin vowed “never again,” hired hundreds of security engineers to make good on that promise. Yahoo, under the leadership of Marissa Mayer, however, focused on other problems the ailing company faced and reportedly failed to take more stringent security measures. Now, Yahoo reports another serious breach, undetected for two years, with 500 million users’ credentials stolen. Yahoo and the FBI are investigating. Continue reading With Breach, Yahoo Pays the Price For Skimping on Security

The NSO Group, an Israeli firm that sells software for invisibly tracking mobile phones, is believed to be responsible for leveraging three security vulnerabilities in Apple devices to spy on journalists and dissidents. The software can reportedly be used to access passwords, emails, text messages, calls, contacts and more. Apple fixed the security flaws 10 days after two researchers provided the tip. The company urges all users to download the latest version of iOS. “Apple on Thursday released a patched version of its mobile software, iOS 9.3.5,” reports The New York Times. “Users can get the patch through a normal software update.” Continue reading Security Alert: Apple Urges iPhone Users to Update Their iOS

Apple has announced its new “security bounty” initiative that will offer payments up to $200,000 to any hackers who inform the company about critical vulnerabilities to its products. In doing so, Apple joins major tech companies that have similar programs in place. Alphabet, Facebook and Microsoft “have paid out millions of dollars in bug bounties over the past few years,” reports The Wall Street Journal. Automobile companies such as Tesla and GM are also introducing bounty programs as vehicles are relying more on software to control their systems. Continue reading Apple is the Latest Tech Giant to Launch Bug Bounty Program