Thursday, July 19, 2018

Microsoft: Facial-Recognition Tech Needs to Be Regulated

'A world with vigorous regulation of products that are useful but potentially troubling is better than a world devoid of legal standards,' Microsoft President Brad Smith writes in a blog post calling for Congress to act.

12 Russians Indicted for DNC Hacks, Stealing Voter Info

The suspects allegedly worked for Russia's intelligence agency. In addition to the DNC hack, they also breached a state election board site and stole data on 500,000 voters.

Hacker Exploits Netgear Router to Nab US Military Drone Files

The security firm Recorded Future noticed the drone documents were up for sale last month in a hacker's forum. The merchant offering them claimed to have exploited a known vulnerability in Netgear routers to steal the files.

Hackers Sold Remote Access to Major Airport for Only $10

The access was being sold on a Russian-language marketplace. The affected airport system was available on the open internet and may have been secured with a weak password.

3D Printed Gun Files Can Be Shared Without Legal Penalty

A settlement between the Department of Justice and a gun rights activist Cody Wilson paves the way for downloadable firearms that can be produced with a 3D printer.

iPhone USB Restricted Mode Is Pretty Easy to Beat

The new mode, available in iOS 11.4.1, is designed to prevent iPhone-cracking tools from accessing a locked device. But security researchers say it can be easily defeated with a $39 Lightning-to-USB adapter device.

Google, Apple Face Scrutiny from Republicans Over Data Privacy

Four House Republicans sent letters to both Apple and Google's parent company Alphabet following recent reports over how third-party apps and smartphones can sift through email inboxes and secretly record data.

Polar Fitness Trackers Reveal All About Military Personnel

Military bases, nuclear weapons storage sites, embassies, airfields, and intelligence agency locations, full names, profile pictures, and where military personnel live have all been revealed by Polar's fitness trackers and social platform.

Timehop Suffers Data Breach

The daily time capsule app gathers content from all your social media accounts to allow it to function, but on July 4 a security intrusion was detected and the names, email addresses, and phone numbers of 21 million users...

Watch Out for This Chrome Tech Support Scam

Scammers are never one to miss an opportunity on the internet, and a Google Chrome browser bug has presented a potentially very lucrative one. Read the details here and don't fall for this underhanded scare tactic.

Marketing Firm Accidentally Exposes 340 Million Records Online

The reported data leak at Exactis potentially exposes every adult in the US to the risk of identity theft. The records contain detailed personal information including phone number, address, and date of birth to whether you own a dog...

Microsoft Tweaks Facial-Recognition Tech to Combat Bias

Microsoft's technology can now more accurately identify people with darker skin tones, though the improvements come amidst growing concern about facial recognition tech and privacy.

Venezuela Tries to Stamp Out Access to Tor Network

The Tor browser had been helping local residents access news sites blocked by the Maduro regime. But now a government-owned ISP is trying to prevent the browser from beating the country's online censorship.

Facebook Will Permit Some Cryptocurrency Ads To Return

Advertisers can promote cryptocurrency-related services and products, but not initial coin offerings on Facebook, the company said on Tuesday. All advertisers must also be pre-approved.

Wi-Fi Is Getting a Major Upgrade

The new security protocol is called WPA3 and will be widely adopted across the tech industry, likely starting in late 2019. It replaces WPA2, which arrived back in 2004.

Have You Been Pwned? Firefox Tool Will Tell You

Firefox Monitor lets people check their email addresses against the popular Have I Been Pwned data breach database. Password manager 1Password has also integrated Have I Been Pwned into its Watchtower service on the web.

How to Reset Your Forgotten Windows 10 Password

Did you forget the password for your Windows PC? You can change it using a Microsoft Account, or a new trick enabled by the Windows 10 April 2018 Update.

Privacy Advocates Say Kelsey Smith Act Gives Police Too Much Power

This bill making its way through Congress would allow law enforcement to more easily uncover location data for cell phones from mobile carriers in an emergency.

Financial Industry Insiders Put the Keys to the Kingdom at Risk

Monitoring for Illicit Insider Activity Shouldn’t Focus Exclusively on Dark Web and Criminal Forums read more

Trends in malware – ransomware, cryptojacking, what next? [PODCAST]

Catch up with Day 3 of our Security SOS Week - here's the third episode of our week-long online security summit.

Microsoft offers up to $100,000 to identity bug finders

Want to earn $100,000? You could win as much as that if you manage to uncover a serious vulnerability in Microsoft’s various identity services. Read more in my article on the Hot for Security blog.

Automated money-laundering scheme found in free-to-play games

The scammers automatically created iOS accounts with valid email accounts, then automatically used stolen cards to buy and resell stuff.