News

ToTok chat app tells users to ignore Google’s spyware warning

Google is warning users that ToTok is unsafe. ToTok says that users shouldn’t trust Google’s warning…

Smashing Security #166: What the Dickens! Ad ban thank you scam

How to stop dick pics on Twitter, and a new way bad guys are extorting money from websites earning cash from Google ads.

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault.

tripwire.com

MGM Resorts hacked: 10.6 million guests have their personal data exposed on hacking forum

Over 10 million people who have stayed at MGM Resorts hotels – including Twitter boss Jack Dorsey and pop idol Justin Bieber – have had their personal details posted online by hackers.

Read more in my article on the Tripwire State of Security blog.

Samsung freaks out smartphone owners with mysterious ‘1’ notification

Samsung has apologised after it accidentally sent a bizarre notification to smartphone owners’ devices.

Teenage girls tempt Israeli soldiers to install spyware for Hamas

It’s not the first time Israeli soldiers have been targeted with Hamas honeytraps to infect their smartphones with spyware.

bitdefender.com

Twitter accounts of The Olympics and FC Barcelona hijacked by OurMine hacking group

The International Olympic Committee and FC Barcelona are the latest victims of a spree of Twitter account hijacks orchestrated by the notorious OurMine gang.

Read more in my article on the Hot for Security blog.

tripwire.com

Puerto Rico government falls for $2.6 million email scam

As if Puerto Rico wasn’t having a hard enough time as it attempts to recover from recession, the damage caused by devastating hurricanes in recent years, and a damaging earthquake last month, it now finds itself being exploited by cybercriminals.

Read more in my article on the Tripwire State of Security blog.

Secure email service Tutanota complains it is being blocked by AT&T in parts of the United States

Some US users of the Tutanota have been unable to access the secure email service while out and about on their smartphones since the end of January.

The common demoninator? They all use AT&T for their internet access.

Smashing Security #165: Cheapfakes, deepfakes, and Ashley Madison

Wi-Fi hopping malware, the return of Ashley Madison extortion scams, and should social media be doing anything about cheapfakes?

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Jessica Barker.

bitdefender.com

2FA is being pushed out to all Google Nest users to better protect their accounts

If a Google Nest account is compromised by a malicious hacker that’s not bad news for the legitimate owner of the account, it’s also bad news for Google.

So that’s why they’re trying to do something about it…

Read more in my article on the Bitdefender Box blog.

Patch now! Microsoft releases fixes for 99 security flaws, some being actively exploited by hackers

It’s one of the largest Patch Tuesday updates ever issued by Microsoft, and includes fixes for 12 security vulnerabilities that have been given the highest severity rating of “critical.”

The clock is ticking. IT teams should waste no time in readying themselves for a roll-out across the Windows computers for which they’re responsible.

bitdefender.com

China denies it was behind the Equifax hack, as four men charged for data breach

China has denied that it was behind the hack of Equifax in 2017, which saw the personal data of hundreds of millions of individuals stolen – including the names, birth dates and social security numbers for nearly half of all American citizens.

Read more in my article on the Hot for Security blog.

Prison inmates’ sensitive data left exposed on leaky cloud bucket

A completely-avoidable data leak has exposed prescription records, mugshots, and other sensitive information related to an unknown number of prison inmates.

Graham Cluley on Tripwire’s Talking Cybersecurity Podcast

A couple of weeks ago the guys from Tripwire were kind enough to invite me onto their new podcast, “Talking Cybersecurity”, and now the episode is out!

Take a listen.