Security

If you use Google's Chrome browser, you may have started seeing warnings that a website is not secure. Here's what it means and what's changed. What's the change? Google has changed the way it displays information about websites in the space on the ... left of the address bar at the top of the Chrome display. Originally this space was only used to indicate when a website was secure via a padlock symbol. Later on Google gave this more emphasis, adding the word "Secure" and marking both in green to stand out. Until now, the fact that a website isn't secure hasn't been explicitly stated: it's just ... (view more)

Google says it's suffered zero phishing attacks since it started making staff use a physical key to log in to work accounts. Of course, it's possible it's been hit with attacks it doesn't know about. The measures were taken to prevent against ... phishing attacks in which scammers try to trick victims into following a link and opening a bogus website that appears to be from a legitimate organization. The idea is that they then type in login details which the scammers can use to access their account on the real website. This can be particularly problematic with business accounts that may house ... (view more)

Microsoft says hackers have targeted at least three candidates for Congress. Security experts say the group behind the attacks has been linked to Russia's intelligence services. The revelation came at the Aspen Security Forum in a speech from Tom ... Burt, Microsoft's head of Customer Security ... (view more)

Google is updating the Chrome browser to give it better defenses against major security threats. It comes at the price of reduced performance and a larger memory footprint. The changes are to address two security bugs labeled Meltdown and Spectre by ... researchers. They take advantage of a flaw in almost every computer processor built since 1995, which is (as of this day) 100% of all computers, tablets, smartphones, laptops - and anything else that uses a processor. The flaw is in regard to a processor feature, which is designed to speed up a computer's response time. It works by using spare ... (view more)

Researchers have warned that smart home technology could be used to aid domestic abuse. They've put together resources for people who could be threatened by abusive partners or former partners. The list comes from University College London and ... follows a New York Times article detailing some of the way domestic abusers have turned smart home tech into a tool to further their abuse. One example is a former partner taking account of a security loophole to continue to access a smart doorbell. That meant they could not only watch video of the partner leaving or returning from the house and monitor ... (view more)

Google has confirmed that third parties may be able to read your Google email (Gmail) messages. The resulting controversy comes from a lack of clarity over its permission settings. The issue isn't about Google itself reading email messages. ... Previously, Google servers would scan email messages for keywords, then use targeted advertisements based on those keyboards whenever users logged into Gmail to read their emails. However, Google has dropped this policy last year and instead bases its ads on other information, such as Google web searches and YouTube viewing. The latest controversy relates ... (view more)

A home security camera user was shocked to receive video from another user when she used a mobile app. The manufacturers say it's a one-off incident caused by human error. According to the BBC, Louisa Lewis has used her security camera since ... December. The set-up means that when the camera's motion sensor is triggered, it makes a recording and sends an alert to her mobile phone, complete with a clip. (Source: bbc.co.uk ) However, last week she began receiving clips from another family's camera instead. After a string of alerts, she contacted the manufacturers. They later stopped the clips ... (view more)

A security firm says efforts to make the Internet truly global could make scams easier. It also says a program for registering domain names in numerous languages can be abused for scam purposes. The issue involves the Internationalized Domain Name ... (IDN) system. This builds on the original Domain Name System (DNS) that helps 'translate' a web site name (such as www.infopackets.com ) into an IP address. These numbers then identify the location of the server, which then allows communication between the server and client machines (such as a web browser) to take place. The basic Domain Name System ... (view more)

Google is to mark Android apps to show they originated in the Google Play store. It's described as a security measure that could be particularly helpful in places with unreliable data connections. The change is to APK files, which stands for ... "Android PacKage"; these are files used to install an Android application on an Android device. Whenever you download an app from the Google Play store, it's always an APK file which is installed. However, the format is also the same if the app were to be downloaded from a third party website. Google is adding security metadata to all APKs ... (view more)

Google's Chrome browser may soon support biometric logins to websites such as fingerprints. It follows on from Firefox becoming the first major browser to support biometric logins just a few weeks ago. Both browsers are supporting "WebAuthn," a web ... standard for authenticating logins without passwords. While it's a big step, it's only half the journey as the standard also has to be supported by the websites in question. (Source: digitaltrends.com ) The standard has been jointly developed by two key groups. The World Wide Web Consortium is the main body that develops standards for ... (view more)