Getty / Aurich Lawson Late on Friday, some users of Outlook.com/Hotmail/MSN Mail received an email from Microsoft stating that an unauthorized third party had gained limited access to their accounts and was able to read, among other things, the subject lines of emails (but not their bodies or attachments, nor their account passwords), between January …

/ Security Assessments News /

Enlarge / Not where you want a hidden camera. A California hospital faces a lawsuit from 81 women who allege they were secretly filmed by hidden cameras in labor and delivery operating rooms while undergoing extremely intimate procedures, including Caesarean births, sterilizations, and operations to resolve miscarriages. The women claim that their privacy was egregiously …

/ Security Assessments News /

A woman carrying four cellphones, two Chinese passports, and a thumb drive containing malware was arrested over the weekend after gaining access to President Donald Trump’s Mar-a-Lago resort under false pretenses, a court document alleged. The woman, identified as 32-year-old Yujing Zhang, on Saturday afternoon told a US Secret Service agent she was there to …

/ Security Assessments News /

Huawei MateBook systems that are running the company’s PCManager software included a driver that would let unprivileged users create processes with superuser privileges. The insecure driver was discovered by Microsoft using some of the new monitoring features added to Windows version 1809 that are monitored by the company’s Microsoft Defender Advanced Threat Protection (ATP) service. …

/ Security Assessments News /

Microsoft is bringing its Windows Defender anti-malware application to macOS—and more platforms in the future—as it expands the reach of its Defender Advanced Threat Protection (ATP) platform. To reflect the new cross-platform nature, the suite is also being renamed to Microsoft Defender ATP, with the individual clients being labelled “for Mac” or “for Windows.” Microsoft …

/ Security Assessments News /

Enlarge / Despite what you may have read, Epic says this is not spyware. This week, certain corners of the gaming Internet have been abuzz with a bit of self-described “amateur analysis” suggesting some “pretty sketchy,” spyware-like activity on the part of the Epic Game Store and its launcher software. Epic has now stepped in …

/ Security Assessments News /

Enlarge / (GERMANY OUT) Leerstehendes Fabrikgebäude im Bonner Stadtteil Friesdorf. Vernagelte Eingangstüre mit zerschlagenen Scheiben (Photo by JOKER / Karl-Heinz Hick/ullstein bild via Getty Images) Ullstein Bild | Getty Images By this point, you’ve hopefully gotten the message that your personal data can end up exposed in all sorts of unexpected internet backwaters. But increased …

Video by Chris Schodt, production by Justin Wolfson. In this episode of Ars Technica Live, we spoke with Leigh Honeywell, a security engineer who has worked at several large tech companies as well as the ACLU. She’s been at the forefront of worker organizing in the tech industry, organizing protests against data-driven profiling and founding …

Enlarge / Microsoft security experts monitoring the world, looking for hackers. Microsoft has announced two new cloud services to help administrators detect and manage threats to their systems. The first, Azure Sentinel, is very much in line with other cloud services: it’s dependent on machine learning to sift through vast amounts of data to find …

/ Security Assessments News /

Windows 7 and Windows Server 2008 users will imminently have to deploy a mandatory patch if they want to continue updating their systems, as spotted by Mary Jo Foley. Currently, Microsoft’s Windows updates use two different hashing algorithms to enable Windows to detect tampering or modification of the update files: SHA-1 and SHA-2. Windows 7 …