Reports from The Guardian and the Washington Post indicate the NSA and the FBI are getting phone records and direct access to big Internet company data. We’re not sure though—it’s classified.

Researchers have found a vulnerability in iOS devices that could allow malicious chargers to install malware. Google announces that critical vulnerabilities that are actively being exploited should be publicly disclosed (and hopefully fixed) within seven days.

Twitter rolls out two-factor authentication security for accounts, but there are some issues. Attacks on defense contractors have resulted in the Chinese government getting access to U.S. weapons systems.

Reporters at Bloomberg News used Bloomberg Terminal subscriber information to find news stories. The U.S. Congress sent a letter to Google asking questions about privacy protections around Google Glass.

$45 million stolen in a massive ATM heist occurring simultaneously in 26 countries. Ron Rivest and Ari Juels describe a way to detect password cracking with Honeywords.

Facebook replaces Trusted Friends with Trusted Contacts. Do you have trustworthy friends though? Bruce Schneier says that connecting dots is more difficult than you might think.

Verizon releases its Data Breach Investigations Report for 2013. We look for interesting and curious findings.

Malwarebytes released an update which classified legitimate Windows files as malicious and servers go down. The Associated Press Twitter account gets owned and a false tweet causes the stock market to plunge briefly.

A leaked memo from the Drug Enforcement Agency claims that reading Apple iMessages is difficult. Mozilla releases the second beta of Persona, an open and distributed identity management system.

We invite Doug Couch to talk more about Bitcoin.

Microsoft has announced the end of support for Windows XP after more than 12 years. Bitcoin values have risen to the point where attackers are now interested in it.

When our DNS goes to 11, your site goes down. Apple stumbles in two-step.

Brian Krebs of the wonderful Krebs on Security blog finds out that some people really don’t like him. A former Tribune Co. employees shares his credentials and some encouragement in the wrong way.

Evernote makes everyone change their password. The National Vulnerability Database has a vulnerability and gets hacked. Irony ensues.

Google’s Two-Step Verification had a hole in the way that application-specific passwords were used. CanSecWest’s PWN2OWN contest results are in.

Is there a secretive Chinese Army unit attacking the U.S.? We look at the Mandiant APT1 report.

The good folks at Gmail have taken meaningful step to reduce compromised accounts and SPAM. Two college kids talk their way into the Superbowl.

The Apple iPhone lock screen can be bypassed to access some sensitive phone information using the emergency dialer and some fancy key sequencing. The President of the United States issues an executive order to improve critical infrastructure for cybersecurity.