Hacking News

Apple uses the Tenth Anniversary iPhone X Phone to replace Touch ID. Because the award handset features an edge-to-edge protection and has very slim bezels, Apple had to get up with a way to reinstate the fingerprint scanner that powers Touch ID. So the group in Cupertino decided to use a facial identification system to […]

Bkav (security firm) said that it was able to bypass the iPhone X’s Face ID system using a specially crafted mask, although Apple attempts to specifically prevent that fraud, but normal users have no obvious reasons to be concerned about the claimed attempts. Read more

Google has teamed up with computer scientists at the University of California, Berkeley, to find out how exactly hijackers take over its users’ accounts.The eggheads peered into online black markets where people’s login details are bought and sold to get an idea of the root cause of these account takeovers and the subsequent theft of

Google has released the results of a year-long investigation into Gmail account hijacking, which finds that phishing is far riskier for users than data breaches, because of the additional information phishers collect. Read more

NATO wants to add the cyberwarfare capabilities of member states to its range of military options.”We must be just as effective in the cyber domain as we are on land, at sea and in the air, with real-time understanding of the threats we face and the ability to respond however and whenever we choose,” said

It’s the kind of thinking you expect from someone who lives in a volcano lair: exfiltrating data from remote screen pixel values.The idea comes from Pen Test Partners’ Alan Monie, taking a break from sex toy hacks and wondering how to get data over a connection like RDP (remote desktop protocol) when the target had

A total of 2,531 of the top 3 million websites (1 in 1,000) are running the Coinhive miner, according to new stats from analytics firm Red Volcano. BitTorrent sites and the like were the main offenders but the batch also included the Ecuadorian Papa John’s Pizza website [see source code]. Read more

FBI agents investigating the murder-suicide of 26 people in a church in Sutherland Springs, Texas, on Sunday, have said they can’t yet unlock the shooter’s smartphone. In a press conference on Tuesday, special agent Chris Combs said that investigations into the motives and actions of the gunman was ongoing, but that his mobe was a

A system that aims to identify stolen passwords before breaches are reported or even detected was launched on Tuesday.Shape Security’s Blackfish credential defence system is designed to detect the use of stolen usernames and passwords by criminals and in real time. Read more

The Google Play store has made headlines recently when cyber criminals were able to hack in and post a fake WhatsApp messenger update for download. More than a million Android phone users were tricked into downloading the app but the overall breach was relatively minor. Read more