Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!
For the less technical
- Report speculates that Google hasn’t updated its iOS apps in weeks to avoid providing privacy details
- Nissan source code leaked online after Git repo misconfiguration
- Microsoft responded quietly after detecting secret database hack in 2013
- Singapore Police Force can obtain TraceTogether data for criminal investigations
- SolarWinds recap: All of the federal agencies caught up in the Orion breach
- Victory at the High Court against the government’s use of ‘general warrants’
- Russian hacker to plead guilty in connection with 2014 breach at JPMorgan Chase
- Anti-secrecy activists publish a trove of ransomware victims’ data
For the more technical
- Undocumented user account in Zyxel products (CVE-2020-29583) + patch
- A side journey to Titan (PDF)
- Bugs in Firefox, Chrome, Edge allow remote system hijacking
- Bug? No, Telegram exposing its users’ precise location is a feature working as ‘expected’ + more information
- 86% of websites using Google Analytics are not anonymizing their users’ full IP addresses
- XSS on forums.oculusvr.com leads to Oculus and Facebook account takeovers
- Leonardo S.p.A. data breach analysis
- Source code revealed for malware that locks IoT male chastity devices
- The Mac malware of 2020. A comprehensive analysis of the year’s new malware
- Cryptocurrency stealer for Windows, macOS, and Linux went undetected for a year
- Operation ‘Kremlin’
- [VIDEO] Computer Security Literacy by Iowa State University
- A short guide to using a Yubikey for SSH authentication
Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.