ICYMI: US team 0days iCloud photos; SC Awards Finalists; Amex breach; Biometrics weak for banking

This week, biometrics isn't quite up to scratch for banking, Amex breached and SC Magazine UK released its finalists for the upcoming 2016 awards.

ICYMI: US team 0days iCloud photos; SC Awards Finalists; Amex breach; Biometrics weak for banking
ICYMI: US team 0days iCloud photos; SC Awards Finalists; Amex breach; Biometrics weak for banking

US team find 0-day to hack Apple iCloud photo, Adele and Harry Styles among victims

Researchers at John Hopkins University have discovered a 0-day bug in Apple's encryption that allowed them to hack an iCloud photo being sent via the secure iMessage system. [Read more]

SC Awards 2016 Europe: Full list of finalists

We are delighted to reveal the finalists for the SC Awards 2016 Europe. Please be sure to join us on Awards Night, Tuesday 7 June 2016, at Old Billingsgate – a stunning venue on the Thames in the heart of the City of London – to find out who the winners will be. [Read more]

UPDATE: Amex warns of breach, cardholders should protect data

After a merchant breach prompting American Express to warn customers that card member information may have been compromised, cardholders should take multiple steps to protect their sensitive data. [read more]

EU-US Privacy Shield attacked by critics in Euro Parliament hearing

At a hearing of the European Parliament's committee on Civil Liberties, Justice and Home Affairs yesterday, critics assailed the proposal as weak and ineffective. The EU-US Privacy Shield is inadequate for the purpose of protecting European citizens' personal data and is unlikely to meet the requirements of the European Court of Justice which struck down Safe Harbour. [Read more]

Biometrically challenged: three-factor authentication systems too weak for web banking

Despite new adoptions by RBS and Natwest, even three factor authentication may not be enough to adequately defend online banking against attackers according to experts. The Internet banking industry is at something of a sensitive inflection point with the resilience of even the most cutting edge security practices for end users now being questioned. [Read more]