Skip to main content

Posts

Showing posts from July, 2020

Florida teen arrested, charged with being “mastermind” of Twitter hack

The 17-year-old is facing 30 felony fraud charges. https://bit.ly/3k16Fbh

Twitter hackers used “phone spear phishing” in mass account takeover

This month's epic breach targeted multiple employees, Twitter says. https://bit.ly/312Q1j8

“This is a very dangerous situation”: Big Tech’s day on the Hill

Marathon session was nearly two different hearings, depending on party of questioner. https://bit.ly/3hQM8o3

Comcast lost 477,000 cable-TV customers in Q2 amid 12% drop in revenue

Broadband is up but TV revenue dropped 3.2%, and overall revenue is down 11.7%. https://bit.ly/3gfzmiG

New flaw neuters Secure Boot, but there’s no reason to panic. Here’s why

Boot Hole provides a new way to install boot-level malware. But it's hardly the only. https://bit.ly/2P6yTDl

North Korea’s Lazarus brings state-sponsored hacking approach to ransomware

In search of funds for country's weapons program, Lazarus goes hunting for big game. https://bit.ly/336Tfo7

Rite Aid deployed facial recognition in hundreds of stores, report finds

The surveillance fell disproportionately on customers in lower-income areas. https://bit.ly/334NrLR

Garmin’s four-day service meltdown was caused by ransomware

Provider of GPS services for navigation and wearable devices is returning to normal. https://bit.ly/30TmLLC

Hackers actively exploit high-severity networking vulnerabilities

F5 flaw allows complete network takeover; Cisco bug discloses sensitive info. https://bit.ly/3hCE6iE

Russia’s GRU hackers hit US government and energy targets

A previously unreported Fancy Bear campaign persisted for well over a year. https://bit.ly/3jBPs8d

Trump campaign angry that cell carriers blocked spammy texts to voters

Trump campaign claims political texts were sent manually and thus not illegal. https://bit.ly/2OStr7d

Chinese-made drone app in Google Play spooks security researchers

DJI Go 4, installed more than 1 million times, can execute arbitrary code. https://bit.ly/3jBHpbK

AT&T’s epic DirecTV losses mount as another 954,000 video customers flee

AT&T had 25.5M TV users in June 2018, is down to 18.4M after latest loss. https://bit.ly/3hH9Jrt

Slack says Microsoft is back up to old bad tricks, “browser war” style

Remember when Netscape said Internet Explorer was a problem? https://bit.ly/2WQOon8

US Navy’s next warship will have an Italian accent

Wisconsin subsidiary of shipbuilder Fincantieri to build FREMM-based FFG(X). https://bit.ly/3eO5fND

QAnon conspiracy kicked off Twitter as platform bans thousands of accounts

QAnon posts are too often linked to dangerous, real-world harms. https://bit.ly/3jxSfzd

Hackers use recycled backdoor to keep a hold on hacked e-commerce server

Easy-to-miss script can give attackers a new access should they ever be booted out. https://bit.ly/2ZP9eVP

Crooks have acquired proprietary Diebold software to “jackpot” ATMs

ATM maker is investigating the use of its software in black boxes used by thieves. https://bit.ly/2WF1l3m

Facebook overrides fact-checks when climate science is “opinion”

Social network still has trouble separating "opinion" from disinformation. https://bit.ly/3jpPrnW

There’s a reason your inbox has more malicious spam—Emotet is back

After taking a five-month break, the botnet returns with a short burst of activity. https://bit.ly/3hcHLDn

Apple has finally embraced key-based 2FA. So should you

Hardware keys are more secure—and finally ready for the masses. https://bit.ly/2WrIRTO

Iran state hackers caught with their pants down in intercepted videos

IBM researchers steal 40GB of data from group targeting presidential campaigns. https://bit.ly/30jDqaS

Russia-linked hackers accused of targeting COVID-19 vaccine developers

UK, US, and Canada attribute attacks to group “almost certainly” working for Moscow. https://bit.ly/2WtkvZZ

Twitter lost control of its internal systems to Bitcoin-scamming hackers

Celebrity accountholders weren't the only targets. Late hacker Adrian Lamo was, too. https://bit.ly/32nBlNN

Details on SpaceX Starlink beta emerge along with photos of user terminals

Starlink beta trials will start in Northern US and lower Canada, new FAQ says. https://bit.ly/3h0WHEH

Verizon’s 5G network is tiny—Verizon ads “falsely implied” it’s nationwide

Watchdog: Verizon ads falsely implied US-wide coverage for sporadic 5G network. https://bit.ly/3exvojR

Microsoft urges patching severe-impact, wormable server vulnerability

17-year-old DNS flaw requires no user interaction and may be exploited soon. https://bit.ly/2Cdwcgy

Amazon supermarket will roll out fancy new smart cart when it opens

The store's too big to cover in cameras, so shoppers can wheel them around instead. https://bit.ly/3exP9HH

This device keeps Alexa and other voice assistants from snooping on you

Meet LeakyPick, the low-cost audio spy detector for network-connected devices. https://bit.ly/2DDxlhH

Malware stashed in China-mandated software is more extensive than thought

Move over GoldenSpy, earlier GoldenHelper malware also targeted businesses in China. https://bit.ly/2ZrNUWn

Google bans ads for stalkerware apps—with some exceptions

Google doesn't allow stalking apps in the Play Store but hadn't yet banned ads. https://bit.ly/3j1zzYk

Amazon bans TikTok on employee phones, then calls it a mistake [Updated]

Amazon told workers to delete TikTok or lose mobile access to company email. https://bit.ly/2BY68WA

IBM has a problem with Google’s Open Usage Commons

The ties between the Open Usage Commons and Google may be too strong and clear. https://bit.ly/3gEAtZ0

Frontier misled subscribers about Internet speeds and prices, AG finds

Washington state AG forces Frontier Northwest to clearly disclose prices, speeds. https://bit.ly/3egdZM6

Google Play apps with 500,000 downloads subscribe users to costly services

Malware family that has infiltrated Play since 2017 strikes again. https://bit.ly/2Zb8xpM

Microsoft neuters Office 365 account attacks that used clever ruse

Businesses in 62 countries targeted in financial fraud scam. https://bit.ly/3eccZZA

Petnet charges new $30 annual fee for a service that still doesn’t work

The company promised to continue service for those who paid up. So far, it hasn't. https://bit.ly/3fcVI3K

The rise and fall of Adobe Flash

Before Flash Player sunsets this December, we talk its legacy with those who built it. https://bit.ly/2VPal5J

Uber plans to gobble up delivery rival Postmates in $2.6 billion deal

Analysts have been expecting the delivery apps to consolidate; now they are. https://bit.ly/3f5alGl

New Mac ransomware is even more sinister than it appears

ThiefQuest or EvilQuest can grab passwords and credit card numbers. https://bit.ly/2O3jN0N

The remote British village that built one of the UK’s fastest Internet networks

The serene, postcard-perfect village of Clapham is becoming known for more than its views. https://bit.ly/2NVnqGe

The 416 quadrillion reasons why Japan’s supercomputer is number 1

Fugaku's compute power will be focus on parsing earthquakes, weather patterns, and coughs. https://bit.ly/2ZEJ5aW

Dish buys Boost prepaid biz from T-Mobile, finally enters wireless market

Dish buys former Sprint prepaid business amid plans to build its own 5G network. https://bit.ly/2VynDTW

Unscheduled fixes released for critical flaw in optional Windows codec

Company uses Microsoft Store to fix remote code-execution bugs in codecs library. https://bit.ly/3dRfQaa

Uncovered: 1,000 phrases that incorrectly trigger Alexa, Siri, and Google Assistant

“Election” can trigger Alexa; “Montana” can trigger Cortana. https://bit.ly/2VFpV3Q