KeyDrop Scans The Web for Publicly Exposed API Keys
An application programming interface (API) key is a code used to identify and authenticate an application or user to another service–essentially to...
Category: Security
Blog Posts
Apple’s New iPhone Memory Protections Safeguards Devices Against Sophisticated Attacks
On Sept. 9, Apple announced a cohesive and impressive approach to preventing memory safety exploits through a range of new hardware features,...
How CR’s Testing Team is Boosting Security—One Smart Product at a Time
When it comes to shopping for connected devices, consumers don’t always have access to information about what products have good cybersecurity and...
New Report: 2025 Consumer Cyber Readiness
Today, Consumer Reports, Aspen Digital, and the Global Cyber Alliance released the fourth annual Consumer Cyber Readiness report. The report...
More Smart Home Companies Want to Hear from Security Researchers
This story was updated on Monday July 14, 2025 to reflect new information from Abode, which alerted us to its dedicated security contact and shared...
New Report: Digital Harassment, Treating Online Abuse Like Spam
In 2021, PEN America published a report, No Excuse for Abuse, mapping out the ways social media companies could better protect and support users...
Why We’re Introducing Model Legislation to Prevent Zombie IoT Devices
Do you know if your Alexa device is still supported by Amazon? If you’re still rocking the original “Pringles can” style smart speaker the...
Should Humane’s Asset Sale Orphan an IoT Device?
This week buyers of a $699 connected AI pin will see their investment turn into so much e-waste, a little over a year after it was first available...
Hey Siri, Are You a Zombie?
In December 2023 the U.S. government disrupted a botnet operated by People’s Republic of China (PRC) state-sponsored hackers. The hackers had...
Charging for Essential Software Security Features Undermines Digital Safety
Charging users more money for essential security is a pernicious practice by vendors selling software to small and medium businesses. Unfortunately,...