Digital Security Articles & Newsletters

animated shark fin on a computer screen_Credit EFF

Mozilla breaks into the anti-data broker game

Newsletter

Hundreds of data brokers aggregate and sell access to personal data, such as phone numbers, emails, addresses, and even purchasing habits collected through loyalty card programs, social media sites, apps, trackers embedded in websites, and more. Mozilla has a new monthly subscription service which automatically scans for your personal data on data broker websites, but there are other ways to make your data less easily searchable. Read more from the Digital Security Team.

Feb. 16, 2024 Dr. Martin Shelton

Moving from passwords to passkeys

Newsletter

Instead of traditional passwords, where you log into a website with credentials that you know or store in a manager, a passkey is a credential that you store on your device, registered with an online account. Read more in our newsletter.

Feb. 15, 2024 Dr. Martin Shelton

Journalists targeted with Pegasus yet again

Newsletter

Mercenary spyware firm NSO Group’s Pegasus spyware, designed to remotely access targeted smartphones, is marketed to governments around the world for the purposes of law enforcement and counterterrorism. But in the wild, we’ve seen governments repeatedly abuse this and similar spyware tools to infect journalists, spying on their most sensitive files, communications, and sources.

Feb. 7, 2024 Dr. Martin Shelton

Harden your iPhone against thieves

Newsletter

Thieves don’t just steal iPhones for the hardware — they may also want access to banking apps and Apple Pay to facilitate fraudulent transfers and purchases. One thing that works in thieves’ favor is that people often use short passwords that are easy to shoulder surf and to memorize — typically only six digits. To minimize this risk, instead of typing in passcodes, where possible and practical consider opting for Face ID or Touch ID when unlocking the phone in public spaces.

Feb. 1, 2024 Dr. Martin Shelton

Check if your account has been breached

Newsletter

If you have found your email in a data breach and the affected account is still active, you’re going to want to change the password for the relevant service right away.

Jan. 23, 2024 Dr. Martin Shelton

Learn from the social media breach at SEC

Newsletter

On Jan. 9, 2024, the U.S. Securities and Exchange Commission’s account on X, formerly known as Twitter, was hijacked and used to post about the approval of a Bitcoin exchange-traded fund. This could have happened to anyone, whether an individual or a well-resourced organization. Learn how to mitigate similar attacks in this week's edition of our digital security digest

Jan. 18, 2024 Dr. Martin Shelton

2024 resolution: Get started with security keys

Newsletter

Two-factor authentication (2FA) is great because it helps harden your account security. The strongest 2FA option commonly available today depends on a piece of hardware, a security key — a little device you can plug into your USB port to help log in.

Jan. 11, 2024 Dr. Martin Shelton

Private browsing isn’t that private

Newsletter

On all major browsers, research suggests many users overestimate the privacy promises of private browsing mode, with many believing that it allows them to hide their IP address, encrypt their web traffic, browse anonymously, and more. That’s why you’ll want to read about what private browsing mode does and doesn’t do.

Jan. 4, 2024 Dr. Martin Shelton

Digital Security Articles & Newsletters

All Articles

Get Notified. Take Action