CAPTCHA, a technique meant to tell humans apart from bot programs, can now be deciphered by Google's Street View technology with near perfect accuracy. The results of this research suggest that we need to update our methods of verification, or even add new layers of security.
Lost or stolen laptops or removable drives can be serious security incidents. Disposing of or selling a laptop or removable drive without securely erasing the data is just as serious. Learn how to securely erase drives using the Disk Utility that comes with Mac OS X.
Despite taking advantage of flaws in OpenSSL, the Heartbleed incident is a sign of how effective open source software development really is. The OpenSSL project only has one full-time developer and the rest are volunteers, yet they're doing more for the software development community than it realizes. If a miniscule number of engineers are working on open source and can address and resolve an issue shortly after it's discovered, think of what a fully staffed organization could accomplish.
Businesses reportedly drag their feet when it comes to recognizing and reacting to data breaches, which is made worse by the fact that the most prevalent attacks follow relatively few patterns. Organizations and users alike need to recognize that no one is immune to data breach and that the responsibility of protecting oneself and others falls to every web user.
WhatsApp has owned up to a security flaw that leaves location data unencrypted and exposes users to man-in-the-middle attacks. WhatsApp has made strong claims about privacy in the past, and came forward as soon as the issue was discovered. According to SC Magazine UK's Tim Ring, "this is the latest in a series of security problems that the company currently faces."