Concern over FBI operation to catch users of darkweb site

Campaigners raise concerns over scope of FBI's single warrant obtained from a Virginia judge

Monday review – the hot 20 stories of the week

From time-wasting password strength and how much your online movements tracked to Black Friday/Cyber Monday weekend tips, and more!

The WordPress megahack that wasn’t

The auto-update server had a flaw, now fixed, that would have let anyone add anything to websites, putting 27% of the entire web at risk.

cURL security audit learns the lessons of Heartbleed

You may not have heard of cURL but you probably use it all the time

Windows 10 still needs EMET exploit protection, US CERT tells Microsoft

Doubts raised over Microsoft's plans to discontinue threat mitigation tool in 2018

Guest post: Cybersecurity school to open at Bletchley Park, home of the wartime codebreakers

Dr Sue Black, author of 'Saving Bletchley Park', welcomes the new cybersecurity school being set up at Bletchley Park, the iconic wartime codebreaking centre

The New Spam Rat Vectors: Calendar and Photo Sharing

Fraudsters eat for free as Deliveroo accounts hit by mystery breach

Company blames credentials stolen from another company for string of rogue transactions

The malicious iPhone video with a silver lining

It might just be a video that crashes your iPhone so hard you have to do a force restart, but that's enough of a risk to be worth noting

Don’t be a security turkey this Thanksgiving!

Here's a plain-talking video to help you stay secure this weekend...and on into the New Year.

‘Compromised’ laptop implicated in US Navy breach of 130,000 records

Names and social security numbers of more than 130,000 serving and former sailors "accessed by unknown individuals"

Facebook ‘quietly developing censorship tool’ for China

Tool would be offered to third parties to monitor stories that 'bubble up' as users share them

Google secures five-year access to health data of 1.6m people

Privacy campaigners raise fears about transparency and explicit consent as health service shares patient data

How your speakers could be turned into eavesdropping microphones

A proof of concept attack uses malware to turn headphones into microphones that can eavesdrop from across a room.

Stop wasting time making the wrong passwords stronger

Much of the effort that goes into making passwords stronger has no effect on security

Cyber Monday: What to watch out for when you hit the web

Here's the second of our three seasonal articles to help to keep you safe during discount-season shopping... and on into the New Year.

Fake news still rattling cages, from Facebook to Google to China

Chrome extension cobbled together by students offers at least one way to tackle 'fake news' problems

It’s the final countdown for SHA-1 SSL certificates

Apple, Microsoft, Google and Mozilla finally set roadmaps for deprecating venerable but outdated SHA-1 certificates

Every move you make, every click you take, we’ll be watching you

'Subject, are you still there?' Jaunty website aims to make clear just how closely our online movements are tracked

Black Friday: What to watch out for when you hit the stores

Here's the first of three pieces we'll be publishing this Thanksgiving weekend, to keep you more secure right into the New Year and beyond.

Alternative social network Ello in plaintext password glitch

Watch out for default settings when you're programming - they can leave your users where they don't want to be.