(get it in RSS or Atom)

Your personal cloud of microbes could one day be used to profile you


Every time we sneeze, cough, scratch, fart, or touch something, we leave behind traces of ourselves. Could this microbial evidence one day be used to identify and surveil us?

EFF and MuckRock run census to find out how local police track your biometrics

EFF and MuckRock run census to find out how local police track your biometrics

Fill out the EFF form to generate a public records request and find out how police are tracking your fingers, face, DNA, tattoos and more.

"Belts and breaches" - 60 Sec Security [VIDEO]


Here's the latest episode of our entertaining news-in-1-minute security roundup.


SSCC 203 - What's the worst sort of service to have a password breach? [PODCAST]

Join Sophos security experts John Shier and Paul Ducklin as they dig into the latest security news in our regular "Chet Chat" podcast.

This week: LastPass, Facebook, Windows 10 (and not-quite-the-end of XP), Samsung, and the Android ecosystem.

Authentication is all around us! 60 Sec Security [VIDEO]

Here's our latest "60 Second Security" video - catch the week's security news in just 1 minute.

How your next password could be your brain


Researchers found that brains react to acronyms in a way that's unique to each individual.

Ready to slap some electrodes on your head?

Apple Watch lets nimble-fingered crooks use your Apple Pay


Nimble-fingered crooks can exploit the one-second lag before Watch senses it's off a wrist and asks for a passcode.

Fujitsu ships first phone with eyeball-scanning authentication

Fujitsu ships first phone with eyeball-scanning authentication

Fujitsu claims its new phone, the Fujitsu Arrows NX F-04G, is the first ever to use iris scanning to replace passwords or fingerprint readers. Time to ditch passwords?

RBS and NatWest banks to use Apple's Touch ID fingerprint system for mobile login

Touch ID. Image courtesy of Shutterstock.

The Royal Bank of Scotland and NatWest have launched a new mobile banking service that allows Apple customers to authenticate via Apple's Touch ID.

Windows 10 will work with FIDO specs for password-free access, says Microsoft

Windows 10 logo

Microsoft has announced that its forthcoming revamp of Windows will be compliant with FIDO's current specifications for advanced authentication. Or has it?

SSCC 185 - "I have a number for you: Eighty Million" [PODCAST]

Our weekly "Chet Chat" podcast is carefully prepared to fit into a quarter-hour, so it is clear and concise as well as being witty and amusing.


US Military wants to replace passwords with "cognitive fingerprints"

Cognitive Fingerprinting

DARPA has awarded researchers at the US military's elite West Point military academy a multi-million dollar contract to produce a replacement for password authentication based on "cognitive fingerprints"

SCADA programmers? It's time for security by default! 60 Sec Security [VIDEO]

Here's the latest episode of our weekly 60-second security video.

Enjoy the news in just one minute...

SSCC 182 - What would the Pirate Party do? [PODCAST]

This week's episode of our quarter-hour security podcast.

Entertaining as well as accurate and educational - why not give it a listen?

EU to demand 2-factor for online payments by August 2015?


The European Banking Authority is nearly, if not quite, insisting on two-factor authentication by August 2015.

If companies that do business in Europe have to comply, could this help boost two-factor in the US and elsewhere?

Can we expect a future free from passwords and PINs?

FIDO unveils details of a future free from passwords and PINs

Will passwords and PINs wither and die? Fast IDentity Online, or FIDO, says its new rules for designing authentication systems should make it "simpler and stronger for all".

Alibaba turns into Ali-blab-blab thanks to web server URL security bug


Chinese e-commerce megabrand Alibaba just fixed a rather naughty security slipup on its online retail portal AliExpress.

You could get data such as the addresses and phone numbers of other users.

POODLE attack takes bytes out of your encrypted data - here's what to do

Heartbleed, Shellshock, Sandworm...and now POODLE.

It's a security hole that could let crooks read your encrypted web traffic.

Paul Ducklin takes you through how it works, and what you can do to avoid it, in plain (well, plain-ish) English...

Is it thumbs up to Barclays bank's finger-vein-reading authentication?

Is it thumbs up to Barclays' finger-vein-reading authentication?

Barclays Bank has announced plans to introduce biometric authentication based on vein patterns in fingers for its UK business customers, which could signal a major shift in how we access online banking systems.

LibreSSL, Linux Foundation, Play Store refunds and Viber shabbiness - 60 Sec Security [VIDEO]


How do you recover from Heartbleed? Can you get your money back from Google? And just how safe is the Viber instant messaging app?

Find out in 60 Second Security...