News

Amazon now lets you opt-out of having humans review your Alexa conversations

Now it’s Amazon’s turn to respond to growing concerns about sensitive personal conversations recorded by digital home assistants are being reviewed by third-party contractors.


40 sec read

Apple’s Siri contractors will no longer hear you having sex, making drug deals

Apple has decided to suspend what it calls Siri “grading” globally, while it conducts a “thorough review.”


1 min read

Google contractors told to stop listening to conversations captured on your Home assistant… for now, in Europe at least

Google has agreed to temporarily stop listening to audio captured by its Google Home smart speaker across the European Union… after an investigation was started by German regulators.


44 sec read

tripwire.com

Exposed internal database reveals vulnerable unpatched systems at Honda

Automotive giant Honda has shut down an exposed database that contained sensitive information about the security – specifically the weak points – of its internal network.

Read more in my article on the Tripwire State of Security blog.


0 sec read

Smashing Security #139: Capital One hacked, iMessage flaws, and anonymity my ass!

Capital One gets hacked, critical vulnerabilities are found in iMessage, and data anonymization may not be as good as we hope. But listen up, we also discuss the Legend of Zelda, a biography of tech giants, offer advice for escaping an angry moose, and are introduced to… Penelope?

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast.


2 min read

bitdefender.com

Fraudsters are trying to steal $8.7 million every single day through Business Email Compromise

Fraudsters are attempting to steal much more money through Business Email Compromise than previously believed.

Read more in my article on the Bitdefender Business Insights blog.


0 sec read

bitdefender.com

$1.7 million still missing after North Carolina county hit by business email compromise scam

Money intended for the construction of a brand new high school was instead placed in a bank account controlled by scammers by officials of a North Carolina county.

Read more in my article on the Hot for Security blog.


0 sec read

Google found a way to remotely attack Apple iOS devices by sending a boobytrapped iMessage

Have you updated your iPhone and iPad to iOS 12.4 yet?

If you care about your security and privacy, then Google researchers have given you a very good incentive to do so as soon as possible.


1 min read

tripwire.com

Woman arrested after Capital One hack spills personal info on 106 million credit card applicants

The FBI has arrested a 33-year-old software engineer in Seattle as part of an investigation into a massive data breach at financial services company Capital One.

Read more in my article on the Tripwire State of Security blog.


0 sec read

bitdefender.com

IoT botnet launched massive 13-day DDoS attack against streaming service

Can you put your hand on your heart and say the web application your company has built would be able to handle 292,000 requests per second, from 402,000 different IP addresses?

Read more in my article on the Bitdefender BOX blog.


0 sec read

Louisiana declares state of emergency after ransomware attacks

Don’t wait until ransomware strikes and then push the button marked “emergency response.” Make sure you take preventative measures in advance, such as making secure offsite backups of anything you cannot afford to lose.


1 min read

Smashing Security #138: Logic bombs, brain data exploitation, and Digga D tweets

Logic bombs in Excel spreadsheets, how should we protect our brain data from big companies, and how did bizarre messages about Drill rap end up on the Metropolitan Police’s Twitter account and website?

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by BJ Mendelson.


1 min read

Police arrest man after Lancaster University hacking attack

Police have arrested a 25-year-old man in connection with a data breach at Lancaster University that saw student records and applicant’s personal details compromised.


1 min read

Sky worries users with phishy-looking password reset email

Sky could have done a better job when they designed their customer email to make it look less suspicious.


3 min read