This week we looked at a class of attacks that use "side channels" for clever and unexpected hacking. We walked through the process of bringing your old Signal messages with you to a new phone . And just to make you feel a little better about the chaos in your email inbox, we caught up with an engineer who is always drowning in messages meant for other people , thanks to an address he created 16 years ago that turned out to be boobytrapped.
And there's more. Every Saturday we round up the security and privacy stories that we didn’t break or report on in depth but think you should know about. Click on the headlines to read them, and stay safe out there.
Justice Department Expands Conspiracy Charges Against Julian AssangeThe United States Department of Justice announced a superseding indictment against WikiLeaks founder Julian Assange on Wednesday that expands the scope of the existing 18 charges against him. The indictment alleges that Assange and other WikiLeaks members collaborated with hacking collectives like LulzSec and Anonymous on what DoJ calls "computer intrusions to benefit WikiLeaks." Assange was originally charged by the Justice Department in April 2019 with hacking crimes. Then at the end of May, DoJ unsealed a superseding indictment focused on alleged violations of the Espionage Act, a move that has been viewed as a potential assault on press freedom, whether you think Assange's work at WikiLeaks was journalism or not.
Senate Republicans Introduce Anti-Encryption LegislationOn Tuesday, senators Lindsey Graham (R-SC), Tom Cotton (R-AR), and Marsha Blackburn (R-TN) introduced a bill that would require tech companies to build so-called lawful access tools, or backdoors, into their products to bypass encryption protections on users' data. The move is the most explicit attack on encryption from Congress in years. "Tech companies’ increasing reliance on encryption has turned their platforms into a new, lawless playground of criminal activity," Cotton said in a statement about the proposed legislation. "This bill will ensure law enforcement can access encrypted material with a warrant." Security researchers have long insisted, though, that there is no technical way to build a backdoor in encryption for law enforcement that won't fundamentally undermine the protection. It's possible that the effort is a red herring to make another bill that threatens encryption , the EARN IT Act, seem more palatable by comparison.
Russian Cybercrime Gang 'Evil Corp' Targets US Employees Working From HomeIn a report on Thursday, researchers from Symantec said that the notorious group Evil Corp has been working to infect companies with ransomware by targeting employees who are working from home during the Covid-19 pandemic. Hackers of all stripes have been taking advantage of pandemic conditions to conduct everything from phishing attacks to unemployment fraud and espionage. But Evil Corp's activity is notable, because the group was indicted by the Justice Department in December for hacking. The Treasury Department also imposed sanctions on the group and said it has ties to the Russian FSB security agency. The US's deterrence efforts have not stopped Evil Corp from expanding its activity, though. Research published earlier this week by the firm Fox-IT indicates that the group has been developing new ransomware and refining its attack techniques.
China Denies Hacking Australian Government and Private CompaniesAustralian Prime Minister Scott Morrison said last Friday that government agencies and companies have been dealing with a months-long barrage of cyberattacks perpetrated by an unnamed nation state actor. Though Morrison did not name a suspect, anonymous officials told the press that the malicious actor is likely China. Researchers also speculated about this possibility based on similar aggressive Chinese espionage and trade secret theft that has plagued countries around the world. Trade negotiations between Australia and China are also currently tense. Zhao Lijian, a spokesperson for China’s Ministry of Foreign Affairs, vehemently denied that China is behind the hacking spree targeting Australia.
- My friend was struck by ALS. To fight back, he built a movement
- Poker and the psychology of uncertainty
- Retro hackers are building a better Nintendo Game Boy
- The therapist is in—and it's a chatbot app
- How to clean up your old social media posts
- 👁 Is the brain a useful model for AI ? Plus: Get the latest AI news
- 🏃🏽♀️ Want the best tools to get healthy? Check out our Gear team’s picks for the best fitness trackers , running gear (including shoes and socks ), and best headphones