The Electronic Privacy Information Center (EPIC) urged the government's Consumer Product Safety Commission to regulate IoT products in a letter this week.
A set of vulnerabilities dubbed "EFAIL" affect encryption standards like PGP and S/MIME and could reveal the plaintext of encrypted emails sent in the past.
Apple has reportedly begun removing apps from the App Store that share location data with third parties but fail to obtain a user's consent.
The FBI said this week that Business Email Compromise (BEC) scams in 2017 resulted in a loss of $675M, a big jump from the year prior, when they were responsible for a loss of $360M.
Amazon followed in Google's footsteps this week in banning domain fronting, a technique that allows app and site developers to evade censorship.
A Chrome extension has been removed from Google's webstore that was found spreading through Facebook, stealing passwords and cryptocurrency.
Zero days, cyber takedowns and more -- catch up with the week's infosec news with this roundup!
Attackers used a BGP leak to trick users and steal $150,000 in cryptocurrency on Tuesday.
Leaky plugins, the latest on the DHS bug bounty bill, and more - catch up on the week's infosec news with this roundup!
FTC settlements, data exfiltration, and more -- catch up on the week's infosec news with this roundup!