Category Archives: Privacy

dissidents, exploit chains, google, ian beer, iPhone, Malware, Malware analysis, Mobile Security, Privacy, Spyware, Vulnerabilities, Watering hole attack, Web Security, zero day

iPhone Zero-Days Anchored Watering-Hole Attacks

August 30, 2019 Tara Seals

A new, highly capable spyware payload can monitor everything in a person’s digital life.
Source: Threatpost.com | Privacy

IoT, Privacy, RSA, RSAC 2019, Smart Home, smart home hack, Videos, Vulnerabilities

RSA Conference 2019: The Expanding Automation Platform Attack Surface

March 9, 2019 Lindsey O Donnell

Hacking into smart homes is becoming increasingly easy and a great way to steal victims’ personal information, Trend Micro said at RSA 2019.
Source: Threatpost.com | Privacy

ACLU, Bruce Schneier, Cryptography, Ford Foundation, FTC, Government, Latanva Sweeney, Privacy, public interest technologist, RSAC

RSAC 2019: An Antidote for Tech Gone Wrong

March 4, 2019 Tom Spring

As many ponder the big ethical questions around cyber, some are proposing public interest technologist as a solution.
Source: Threatpost.com | Privacy

account compromise, Credential stuffing, dd perks, dunkin donuts, loyalty programs, Passwords, Privacy, second attack, Web Security

Double-Stuffed: Dunkin’ Hit by Another Credential-Stuffing Attack

February 12, 2019 Tara Seals

Dunkin’ Donuts’ loyalty program was hit with a credential stuffing attack that targeted names, email addresses, 16-digit DD Perks account numbers and DD Perks QR codes.
Source: Threatpost.com | Privacy

coca cola, data breach, employees, Hacks, insider threat, Karim Baratov, Mobile Security, Privacy, sentenced, stolen hard drive, yahoo

Yahoo Hacker Sentenced; Coke Opens Up a Can of Data Breach

May 30, 2018 Tara Seals Leave a comment

Fortune 500 breaches seem to be a theme this week.
Source: Threatpost.com | Privacy

Ancestry, Ancestry.com, chief information security officer, HaveIBeenPwned.com, leaky servers, plain text passwords, Privacy, RootsWeb, Troy Hunt, Web Security

Leaky RootsWeb Server Exposes Some Ancestry.com User Data

December 28, 2017 Tom Spring Leave a comment

Ancestry.com closes parts of its community-driven genealogy site RootsWeb as it investigates a leaky server that exposed thousands of passwords, email addresses and usernames to the public internet.
Source: Threatpost.com | Privacy

address, breach, Cloud Security, credit score, Hacks, Infiniti Financial Services Canada, loan amount, name, NCF, Nissan Canada Finance, Privacy, TransUnion, vehicle identification number, vehicle make and model, Web Security

Nissan Canada Finance Notifies 1.1 Million of Data Breach

December 22, 2017 Tom Spring Leave a comment

Nissan Canada Finance notified 1.13 million customers on Thursday of a data breach impacting an unspecified number of past and present customers.
Source: Threatpost.com | Privacy

debugger, EliteBook, Hacks, HP laptops, HP Pavilion, keylogger, Mobile Security, Privacy, Synaptics, Synaptics TouchPad driver, WPP trace, ZBook

Synaptics Says Claims of a Keylogger in HP Laptops are False

December 14, 2017 Tom Spring Leave a comment

Synaptics said reports that hundreds of HP laptops contained a secret keylogger that traced back to debugger software made by the company are inaccurate.
Source: Threatpost.com | Privacy

Android, Android OS, APK, APK signature scheme v1, APK signature scheme v2, Dalvik Executable, December Android Security Bulletin, DEX, Google Maps, Hacks, Malware, Mobile Security, Nougat, Privacy, signature verification certificate, Vulnerabilities

Android Flaw Allows Attackers to Poison Signed Apps with Malicious Code

December 8, 2017 Tom Spring Leave a comment

An Android vulnerability called Janus allows attackers to inject malicious code into signed Android apps.
Source: Threatpost.com | Privacy

Active Directory Domain, BITS, C2, CMD shell, East Asia, google drive, Government, Hacks, HTTP backdoor, Malware, Microsoft Windows Background Intelligent Transfer Service, Privacy, QEMU, South Korea, UBoatRAT, VirtualBox, vmware, Vulnerabilities, Zip archives

RAT Distributed Via Google Drive Targets East Asia

November 30, 2017 Tom Spring Leave a comment

Researchers say a new remote access Trojan dubbed UBoatRAT is targeting individuals or organizations linked to South Korea or video games industry.
Source: Threatpost.com | Privacy

Secure IT | IT Security