[ad_1]
This week, Venmo it took a long-standing step toward privacy by eliminating its global social flow in its recent reshuffle. That’s good! Now you can no longer see the endless stream of strangers sending money from each other and from there. But supporters of privacy say so Until Venmo defaults to all transactions privately, it is still the responsibility of the users to browse the settings to hide the life of Venmo from others.
Amnesty International and a consortium of researchers and media organizations have this week released a major investigation into the NSO Group and the Israel-based spyware vendor. The report alleges that governments have used malware from the NSO Group to spy on activists, journalists, politicians and executives; The NSO Group gave numerous denials. Security investigators, on the other hand, take the revelations as their own evidence they need more visibility with iOS and Android to better detect such attacksand prevent progress.
In another group around the world this week, nations around the world determined aggressive Chinese hacking behavior over the years, including accusations from the U.S. Department of Justice. Although China has historically focused on espionage, in recent years there has been a growing confidence in criminal contractors it has led to reckless campaigns.
When we are talking about recklessness, remember that absurdly widespread ransomware attack that success at the beginning of the month? Three weeks later, the IT management company Kaseya eventually acquired a universal decryption tool, that is, victims who have not yet recovered data or recovered it through other means can breathe easy. At least until the next ransomware scare. We too he took a look Space Jam: New Heritage and bad lessons the young man is teaching about AI.
And there is more. Every week, WIRED did not cover all the security news in depth. Click on the titles to read the full story and stay safe.
Very good capture of motherboard and Twitter users @dox_gay this week: news sites like Washington Post, New York magazine, and unintentionally displayed pornography on older pages. (And yes, that includes some old WIRED stories.) Guilty? The video platform called Vidme, which operated from 2014 to 2017, was purchased by an adult site called 5 Star Porn HD. Since the service became feasible, websites that had the Vidme player embedded began to show small images of graphic sexual content instead of what was originally there. Motherboard also warns that this is a funny example of a serious problem: the most corrupt infrastructure on the Internet in general.
Chromebook owners will see that they are not able to sign in to their devices this week. An error in a recent update prevented cloud-based laptops from accepting passwords on the login screen, leaving users locked indefinitely. Not great! But what’s even worse is that the mistake, apparently, comes down to a small, tiny piece of writing. Some Chrome OS programmers left a “&” somewhere in a conditional statement that was not captured by colleagues and chaos ensued. Google released a bad update quickly, and a fix is underway now, but that hasn’t been much of a convenience for Chromebook owners who have been affected.
This week Twitter reported that very, very, very, very, very few of its users are taking advantage two-factor authentication. Just 2.3 percent, to be exact. This is not great! Both factors cannot stop all attacksbut it offers a huge security upgrade to avoid problems, on a platform that suffers from epidemics of regular accounts. You can use an authentication application instead your phone number, an even safer and easier method to manage. If you’re one of the 97.7 percent of active Twitter users who don’t use two factors, take 90 seconds a day to set it up.
Do we remember how we said that China has historically focused on espionage? That is still true. But this week’s alarming alert from the FBI and the Department of Homeland Security indicates that the country’s hackers have at least seen it as a disruptive attack. Around 2011-2013, nearly two dozen U.S. pipeline companies were surveyed, and not just for intellectual property. “Ultimately, this activity was to help China develop cyber-attack capabilities against U.S. pipelines, to physically damage pipelines or to interrupt pipeline operations,” the alert says. It’s the kind of behavior you play Expect from Russia or ransomware hooligans, but less China. Fortunately, the events took place a few years ago; the hope is not to see these plans again.
More great KABEKO stories
[ad_2]
Source link
