fbpx

Download free GDPR compliance checklist!

Category Archives for "Security"

Credit Card Hacking Forum Gets Hacked, Exposing 300,000 Hackers’ Accounts

Carding Mafia, a forum for stealing and trading credit cards has been hacked, exposing almost 300,000 user accounts, according to data breach notification service Have I Been Pwned.

The data breach allegedly exposed the email addresses, IP addresses, usernames, and hashed passwords of 297,744 users. Have I Been Pwned announced the data breach on Tuesday, saying the breach happened last week.

Source: Credit Card Hacking Forum Gets Hacked, Exposing 300,000 Hackers’ Accounts

Elon Musk Says Tesla Won’t Share Data From Its Cars With China or U.S.

Tesla would never provide the U.S. government with data collected by its vehicles in China or other countries, Elon Musk, the company’s chief executive, told a high-level conference in China Saturday.

Musk’s assurance that Chinese customer data is fully protected followed the Chinese government’s decision to restrict the use of Tesla cars by military personnel or employees of key state-owned companies, as first reported by the Journal on Friday. Beijing had acted out of concern that sensitive data such as images taken by the cars’ cameras could be sent to the U.S., according to people familiar with the matter.

Source: Elon Musk Says Tesla Won’t Share Data From Its Cars With China or U.S. – WSJ

Computer giant Acer hit by $50 million ransomware attack

Computer giant Acer has been hit by a REvil ransomware attack where the threat actors are demanding the largest known ransom to date, $50,000,000.

The ransomware gang announced on their data leak site that they had breached Acer and shared some images of allegedly stolen files as proof.

In response to BleepingComputer’s inquiries, Acer did not provide a clear answer regarding whether they suffered a REvil ransomware attack, saying instead that they “reported recent abnormal situations” to relevant LEAs and DPAs.

Source: Computer giant Acer hit by $50 million ransomware attack

More Mac malware was detected last year than ever before

There has been a significant increase in the amount of malware targeting macOS devices over the past 12 months, new research has claimed.

A report from Atlas VPN found that the development of macOS malware surged by 1,092% in 2020 as hackers increasingly targeting Apple’s computing devices, including the all-new M1 Macs.

Overall, 674,273 new malware samples were detected in 2020 – a huge rise from the previous year, when there were only 56,556 samples detected.

Source: More Mac malware was detected last year than ever before | TechRadar

As Digital Currency’s Popularity Rises, So Do Privacy Fears

A digital dollar, however, would have an inherent value, just like physical cash. It would be the thing itself, not a representation of something else.

But digital payments have a hard time staying private. When we make payments using bank accounts and credit cards, we make a Faustian bargain: convenience in exchange for the knowledge that our transactions will be visible to the companies involved. Every swipe and transfer leaves a trail.

Full article: As Digital Currency’s Popularity Rises, So Do Privacy Fears | WIRED

Are the parental control apps we use to protect our kids actually unsafe too?

Children are spending more time online and many parents are concerned about screen time, cybersafety and internet addiction. An increasingly popular technical solution is parental control apps.

But such a quick fix is inadequate when addressing the complicated reasons behind screen time. Much worse though, the apps expose users to privacy and other safety issues most people aren’t aware of.

Parental control apps need many permissions to access particular systems and functions on devices. And many of these apps embed data hungry third-party software development kits (SDKs) – many popular parental control apps in the Google Play Store have extensive security and privacy vulnerabilities due to SDKs.

Full article: Are the parental control apps we use to protect our kids actually unsafe too?

Facebook Is Building An Instagram For Kids

Executives at Instagram are planning to build a version of the popular photo-sharing app that can be used by children under the age of 13, according to an internal company post obtained by BuzzFeed News.

Current Instagram policy forbids children under the age of 13 from using the service. The internal announcement comes two days after Instagram said it needs to do more to protect its youngest users.  The development of an Instagram product for kids follows the 2017 launch of Messenger Kids, a Facebook product aimed at children between the ages of 6 and 12.

Source: Facebook Is Building An Instagram For Kids

Surveillance Camera Hack Raises Legal Risk of Digital Device Use

A recent hack into a massive collection of security camera data from Verkada Inc. shows the cyber and privacy-related vulnerabilities of digital devices that could give way to lawsuits and government enforcement actions.

The Verkada hack could bring attention from the Federal Trade Commission and state attorneys general who enforce laws protecting against unfair and deceptive business practices. The company also could be found liable under state-level data breach laws that require security controls to be in place.

Wiretapping laws could come into play, too, if there are audio recordings implicated in the hack. So could health privacy laws, for hacked video footage from hospitals or clinics.

Full article: Surveillance Camera Hack Raises Legal Risk of Digital Device Use

Swiss authorities raid home of hacker potentially responsible for breaching surveillance cameras

Swiss law enforcement raided the home of a hacker potentially responsible for breaching around 150,000 surveillance cameras, exposing sensitive footage from homes, hospitals and prisons.

The police in Lucerne, Switzerland, carried out a home search Friday at the request of the U.S. government on a residence connected to the hacker Tillie Kottmann who claimed credit for the breach, declining to name those involved.

Tillie Kottmann claimed responsibility for the breach, which was carried out by the international hacking group that Kottmann is a part of, as a way to bring attention to how easily surveillance systems can be compromised.

Source: Swiss authorities raid home of hacker potentially responsible for breaching surveillance cameras | TheHill

Twitter will soon let you use a security key as your only 2FA method

Twitter is planning a future update that will allow accounts enabled with two-factor authentication to use security keys as the only authentication method, the company said on Monday.

At present, you can use a security key to sign in to your Twitter account, but you need to have another 2FA method — like an authenticator app or SMS codes — enabled as backup.

While authentication apps like Google Authenticator or Authy are more secure than using SMS codes for 2FA, security keys — physical keys that connect to your computer using USB or Bluetooth — are the most secure way to protect an account online. Users don’t have to type in a code that could be intercepted by a malicious third party.

Source: Twitter will soon let you use a security key as your only 2FA method – The Verge

>