Robert Lemos

About

Robert Lemos is an award-winning journalist who has covered information security, cybercrime and technology's impact on society for almost two decades. A former research engineer, he's written for Ars Technica, CNET, eWEEK, MIT Technology Review, Threatpost and ZDNet. He won the prestigious Sigma Delta Chi award from the Society of Professional Journalists in 2003 for his coverage of the Blaster worm and its impact, and the SANS Institute's Top Cybersecurity Journalists in 2010 and 2014.

Breach Reports Rise 40 Percent in 2016, More Than Half Expose SSNs

Reports of data breaches rose more than 40 percent in 2016, with 72 percent caused by hacking, skimming or phishing and the majority of records were stolen from the health care industry, according to a report released by the Identity Theft Resource Center on Jan. 20. Using public breach reports and information provided by more […]

Hacker Group ‘ShadowBrokers’ Release NSA Exploits After Auction Fails

The ShadowBrokers, a hacking group, pledged to shut down their operation and go dark on Jan. 12. But as a final act of spite the group released 61 files from a cache of hundreds of programs allegedly belonging to an exploitation framework used by the U.S. National Security Agency. The files reportedly include programs for […]

DHS Designates Election Machines, Systems as ‘Critical Infrastructure’

The U.S. Department of Homeland Security designated the nation’s election technology and systems as critical infrastructure, giving state election officials access to technical and policy aid from the agency. The move, announced Jan. 6, makes the election infrastructure in the United States part of the government-facilities critical infrastructure sector, one of the 16 sectors deemed […]

Drop in Web App Flaws in 2016, Likely Not a Sign of Improved Security

The number of vulnerabilities reported in Web applications decreased slightly in 2016 over the previous year, with flaws in popular content-management systems dramatically declining, security firm Imperva stated in an analysis released last week. While the decrease in Web vulnerabilities could be considered a sign of improving security for online applications, Nadav Avital, technical lead […]

Ransomware Hits LG Smart TV Underscoring Dangers of IoT Flaws

Programmer Darren Cauthon learned the hard way that the makers of smart TVs—devices that are connected to the Internet and can run apps—may not be making the smartest decisions when it comes to security. Over the holidays, a member of the programmer’s family—later reported to be his wife — downloaded an app for watching free […]

U.S. Prosecutors Charge Three Chinese Hackers With Insider Trading

U.S. federal prosecutors charged three Chinese nationals with hacking the networks of U.S.-based international law firms and using information from those firms to conduct insider trading, making more than $4 million from the scheme, according to a statement by the U.S. Attorney’s Office. The three men targeted at least seven firms which advised companies involved […]

Congressional Report Backs Strong Encryption, Police Decryption Rights

The United States needs to continue to support strong encryption or risk undermining the digital economy, according to a bi-partisan congressional report released Dec. 20. The Encryption Working Group Year-End Report, summarizes the conclusions of a nearly year-long investigation by members of the House of Representatives’ Judiciary Committee and Energy and Commerce Committee. While finding […]

Google Publishes Eight Formerly Restricted National Security Letters

Google released eight lightly-redacted National Security Letters this week, giving citizens a look at the formerly ultra-secret documents that the U.S. government uses to gather information in terrorism and criminal investigations. The eight letters requested information about specific email addresses or, in one case, the account information for two users. One letter requested information on […]

Skype for Mac Backdoor Allowed Access to Calls, Messages for Years

Microsoft quietly patched the Mac OS X client for Skype in October, closing a backdoor that could have existed for as long as a decade and would have allowed attackers to control many aspects of the software, security-services firm Trustwave said on Dec. 14. The backdoor, which bypasses a permissions check by the Skype client […]

34 People Arrested in Global Roundup of DDoS Service Customers

International law enforcement agencies in more than dozen countries arrested 34 individuals in a cyber-crime sweep that focused on customers of online services that provide denial-of-service attacks to order. In the United States, the FBI arrested a 26-year-old University of Southern California graduate student allegedly linked to distributed denial-of-service (DDoS) attack that knocked a San […]