Emails from the Epic Games lawsuit show Apple brass discussing how to handle a 2015 iOS hack. The company never directly notified affected users.
China
How phishing attacks spoofing Microsoft are evading security detection
The phishing emails use a Microsoft logo within an HTML table, which is not analyzed by security programs, says Inky.
VPN Hacks Are a Slow-Motion Disaster
Recent spying attacks against Pulse Secure VPN are just the latest example of a long-simmering cybersecurity meltdown.
Microsoft releases biannual reports on digital trust
The reports reveal an increase in requests from U.S. law enforcement agencies, and that the company received the most requests for content removal from China during this period.
The Biggest Security Threats to the US Are the Hardest to Define
In a Senate briefing, the heads of the major intelligence agencies warned the public about dangers that offer no easy solutions.
Facebook Moves Against ‘Evil Eye’ Hackers Targeting Uyghurs
The company’s investigation into a Chinese espionage campaign took researchers beyond Facebook’s own platforms.
The Peculiar Ransomware Piggybacking Off of China’s Big Hack
DearCry is the first attack to use the same Microsoft Exchange vulnerabilities, but its lack of sophistication lessens the threat.
Apple Bent the Rules for Russia. Other Nations Will Take Note
Russian iPhone buyers will soon be prompted to install software developed in that country, setting a precedent that other authoritarian governments may follow.
It’s Open Season for Microsoft Exchange Server Hacks
A patch for the vulnerabilities China exploited has been released. Now, criminal groups are going to reverse engineer it—if they haven’t already.
Utah’s ‘Porn Filter’ Law Passes the State Legislature
Plus: An iOS 14 jailbreak is out, Solarwinds details emerge, and more of the week’s top security news.