When the still-unidentified group calling itself the Shadow Brokers spilled a collection of NSA tools onto the internet in a series of leaks starting in 2016, they offered a rare glimpse into the internal operations of the the world's most advanced and stealthy hackers. But those leaks haven't just let the outside world see into the NSA's secret capabilities. They might also let us see the rest of the world's hackers through the NSA's eyes. Learn about your ad choices: dovetail.prx.org/ad-choice...
Mar 07, 2018•10 min
On Tuesday, the Supreme Court heard oral argument in United States v. Microsoft, a case that many observers believe could have significant ramifications for how cloud computing and other technology companies interact with the US government. If it were up to the justices themselves, however, those implications would end up being short-lived. Learn about your ad choices: dovetail.prx.org/ad-choices
Mar 07, 2018•8 min
Uber faces more potential legal consequences for waiting to make public a major hack until a over a year after it happened. The Pennsylvania Attorney General filed a lawsuit against Uber Monday for violating the state's data breach notification law, which says hacks should be disclosed within a "reasonable" time frame. Uber didn't merely keep quiet about the massive breach; it reportedly paid a $100,000 ransom to the perpetrators in exchange for their silence. Learn about your ad choices: doveta...
Mar 06, 2018•9 min
It was a wild west week in security, as GitHub succeeded in surviving the biggest DDoS attack ever (1.35 terabits per second!) and analysts scrutinized the "false flag" techniques Russian hackers have used in their attacks to shift blame and throw off investigators. Researchers found an unexpected method for executing phishing attacks against some "unphishable" Yubikey two-factor authentication tokens. (Not the one included in WIRED's subscription package. Learn about your ad choices: dovetail.p...
Mar 06, 2018•6 min
For more than a year, Jonathan Albright has served as something of a one-man General Accounting Office for the tech industry. The researcher at Columbia University's Tow Center for Digital Journalism has dug into the details on how political Twitter trolls manipulate the media, and unearthed an intricate web of conspiracy theory videos on YouTube. Last weekend, while digging through Facebook’s testimony to the Senate Judiciary Committee from last fall, something else caught his eye. Learn about ...
Mar 05, 2018•9 min
Yes, websites track your behavior online. But some go much further than what you'd reasonably expect, using so-called session replays to create a detailed log of everything you do and type on a site. And new research shows that in some cases these movie-like recordings are even storing your passwords. Bulk data collection is always a privacy red flag. Learn about your ad choices: dovetail.prx.org/ad-choices
Mar 05, 2018•9 min
There's no better way to protect yourself from the universal scourge of phishing attacks than with a hardware token like a Yubikey, which stymies attackers even if you accidentally hand them your username and password. But while Yubikey manufacturer Yubico describes its product as "unphishable," a pair of researchers has proven the company wrong, with a technique that allows clever phishers to sidestep even Yubico's last bastion of login protection. Learn about your ad choices: dovetail.prx.org/...
Mar 02, 2018•9 min
On Wednesday, at about 12:15pm ET, 1.35 terabits per second of traffic hit the developer platform GitHub all at once. It was the most powerful distributed denial of service attack recorded to date—and it used an increasingly popular DDoS method, no botnet required. GitHub briefly struggled with intermittent outages as a digital system assessed the situation. Within 10 minutes it had automatically called for help from its DDoS mitigation service, Akamai Prolexic. Learn about your ad choices: dove...
Mar 02, 2018•8 min
Learn about your ad choices: dovetail.prx.org/ad-choices
Mar 01, 2018•5 min
Five years ago, US law enforcement served Microsoft a search warrant for emails as part of a US drug trafficking investigation. In response, Microsoft handed over data stored on American servers, like the person’s address book. But it didn’t give the government the actual content of the individual’s emails, because they were stored at a Microsoft data center in Dublin, Ireland, where the subject said he lived when he signed up for his Outlook account. Learn about your ad choices: dovetail.prx.or...
Mar 01, 2018•9 min
Three weeks ago, House Republicans publicly released a much-hyped memo written by representative Devin Nunes of California. It alleged, through a series of allusions, tangential facts, and seeming misdirections, that law enforcement officials had abused their power in obtaining a surveillance warrant against former Trump campaign advisor Carter Page. Now, in a 10-page memo of their own, House Democrats are attempting to set the record straight. Learn about your ad choices: dovetail.prx.org/ad-ch...
Feb 28, 2018•10 min
When an Oregon science fiction writer named Charity tried to log onto Facebook on February 11, she found herself completely locked out of her account. A message appeared saying she needed to download Facebook’s malware scanner if she wanted to get back in. Charity couldn’t use Facebook until she completed the scan, but the file the company provided was for a Windows device—Charity uses a Mac. Learn about your ad choices: dovetail.prx.org/ad-choices...
Feb 28, 2018•9 min
Today’s guilty plea by Rick Gates might be one of the least surprising developments in the Mueller investigation: It had been clear that the former Trump campaign aide would likely seek a deal almost since the day Gates and his business partner and former Trump campaign chairman Paul Manafort were indicted in October, and we’ve seen reports for weeks that negotiations between Mueller and Gates have been underway. Learn about your ad choices: dovetail.prx.org/ad-choices...
Feb 27, 2018•14 min
Robert Mueller's indictment of Russia's Internet Research Agency—also known as the "troll factory"—feels like years ago at this point. It's only been a week! And we took a deep dive into what it really says about Russia's propaganda efforts during the 2016 presidential campaign and beyond. Trump campaign advisor Rick Gates has also copped a plea deal with Mueller's team—which could have big implications for the investigation going forward. Learn about your ad choices: dovetail.prx.org/ad-choices...
Feb 27, 2018•5 min
v. Swiping computer processing power through a web browser to illicitly mint cryptocurrency. People who streamed the TV drama Billions last fall may have been hit by some real-life financial chicanery. While they watched, a rogue script on the Showtime website directed their PCs to engage in “mining” operations for a bitcoin-like digital currency. Doing currency mining on your own machine is perfectly legit. Learn about your ad choices: dovetail.prx.org/ad-choices...
Feb 26, 2018•2 min
It's almost Tax Day, which also means it's peak tax fraud season. The Internal Revenue Service has played some epic games of cat-and-mouse with phone and online scammers over the past 10 years, but the latest scamming trend for 2018 has a particularly devious twist. Here's how it works: Attackers use a taxpayer's stolen identity information to fraudulently file their returns for a refund. They allow that refund to direct deposit into the victim's actual bank account. Then the real fun starts. Le...
Feb 26, 2018•5 min
Passports, like any physical ID, can be altered and forged. That's partly why for the last 11 years the United States has put RFID chips in the back panel of its passports, creating so-called e-Passports. The chip stores your passport information—like name, date of birth, passport number, your photo, and even a biometric identifier—for quick, machine-readable border checks. Learn about your ad choices: dovetail.prx.org/ad-choices
Feb 23, 2018•6 min
It was the day of the biker rally, the Sunday of Memorial Day weekend 2016, when thousands of motorcyclists descend in a cacophonous blitz on Washington, DC, for the annual Rolling Thunder rally. Soon-to-be Republican presidential nominee Donald Trump, wearing a blazer sans tie but with a red MAGA hat firmly ensconced on his head, worked the crowd around the Lincoln Memorial. “Look at all these bikers,” he said. “Do we love the bikers? Yes. We love the bikers. Learn about your ad choices: doveta...
Feb 22, 2018•10 sec
In the four or so years since it launched, end-to-end encrypted messaging app Signal has become the security community's gold standard for surveillance-resistant communications. Its creators have built an encryption protocol that companies from WhatsApp to Facebook Messenger to Skype have all added to their own products to offer truly private conversations to billions of people. Learn about your ad choices: dovetail.prx.org/ad-choices
Feb 22, 2018•7 min
It's been nearly eight months since the malware known as NotPetya tore through the internet, rippling out from Ukraine to paralyze companies and government agencies around the world. On Thursday, the White House finally acknowledged that attack. And in a reversal of its often seemingly willful blindness to the threat of Russian hacking, it has called out the Kremlin as NotPetya's creator. Learn about your ad choices: dovetail.prx.org/ad-choices...
Feb 21, 2018•6 min
Special counsel Robert Mueller’s indictment against Russia’s Internet Research Agency contains a number of striking moments, from the inflammatory ads bought by the so-called “troll factory” to the rampant identity theft against US citizens. But what stands out most may be the reminder that for Russia, subverting the foundations of US democracy was just another 9 to 5. Learn about your ad choices: dovetail.prx.org/ad-choices
Feb 21, 2018•6 min
North Korea's most prolific hacking group, broadly known within the security community under the name Lazarus, has over the last half-decade proven itself one of the world's most internationally aggressive teams of intruders. It has pulled off audacious attacks around the globe, from leaking and destroying Sony Pictures' data to siphoning of tens of millions of dollars from banks in Poland and Bangladesh. Learn about your ad choices: dovetail.prx.org/ad-choices...
Feb 20, 2018•8 min
Each new breaking news situation is an opportunity for trolls to grab attention, provoke emotions, and spread propaganda. The Russian government knows this. Fake-news manufacturing teenagers in Macedonia know this. Twitter bot creators know this. And thanks to data-gathering operations from groups like the Alliance for Securing Democracy and RoBhat Labs, the world knows this. Learn about your ad choices: dovetail.prx.org/ad-choices
Feb 20, 2018•7 min
For some time, there has been a conflation of issues—the hacking and leaking of illegally obtained information versus propaganda and disinformation; cyber-security issues and the hacking of elections systems versus information operations and information warfare; paid advertising versus coercive messaging or psychological operations—when discussing “Russian meddling” in the 2016 US elections. Learn about your ad choices: dovetail.prx.org/ad-choices...
Feb 19, 2018•10 min
Facebook has always nudged truant users back to its platform though emails and notifications. But recently, those prods have evolved beyond comments related to activity on your own profile. Now Facebook will nag you when an acquaintance comments on someone else’s photo, or when a distant family member updates their status. The spamming has even extended to those who sign up for two-factor authentication—which is a great way to turn people off to that extra layer of security. Learn about your ad ...
Feb 19, 2018•7 min
For anyone getting their geopolitical news from the Olympics alone, North Korea might seem practically charismatic. Its combined hockey team with South Korea has become a global symbol of dictator Kim Jong Un's call for improved relations with the South. Kim's sister has led a Pyeongchang charm offensive. And its Stepford cheerleaders—well, some people seem to not be entirely creeped out by them. Learn about your ad choices: dovetail.prx.org/ad-choices...
Feb 16, 2018•6 min
This week, reports have percolated that Facebook is testing a new menu item, called "Protect," in its iOS app. The feature sports a blue shield icon, and tapping it redirects you to the App Store listing for Facebook-owned VPN app Onavo Protect. But while Onavo does claim to offer some tools that make the web safer, in practice it falls far short of the privacy protections that VPN users reasonably expect. Learn about your ad choices: dovetail.prx.org/ad-choices...
Feb 16, 2018•7 min
Facial recognition and machine learning programs have officially been democratized, and of course the internet is using the tech to make porn. As first reported by Motherboard, people are now creating AI-assisted face-swap porn, often featuring a celebrity's face mapped onto a porn star's body, like Gal Gadot's likeness in a clip where she's supposedly sleeping with her stepbrother. Learn about your ad choices: dovetail.prx.org/ad-choices...
Feb 15, 2018•9 min
The rise of cryptojacking—which co-opts your PC or mobile device to illicitly mine cryptocurrency when you visit an infected site—has fueled mining's increasing appeal. But as attackers have expanded their tools to slyly outsource the number of devices, processing power, and electricity powering their mining operations, they've moved beyond the browser in potentially dangerous ways. Learn about your ad choices: dovetail.prx.org/ad-choices...
Feb 15, 2018•8 min
On Tuesday, the heads of the NSA, CIA, FBI, and ODNI—America's intelligence community brain trust—gathered before members of the Senate Select Committee on Intelligence to discuss various worldwide threats. And while most of the topics were familiar, the hearing also included a few revelatory moments, insights into fears that were either detailed or confirmed. Learn about your ad choices: dovetail.prx.org/ad-choices
Feb 14, 2018•11 min
