Privacy

Fingerprinting iPhones with the built-in gyroscope

Some rather ingenious researchers have found a way to unique identify iPhones and iPads by examining data gathered from a device’s accelerometer, gyroscope and magnetometer sensors.


52 sec read

bitdefender.com

Google stored business customers’ passwords in plaintext on its servers… for 14 years

Google has admitted that some of its business customers of G Suite (formerly known as Google Apps) had their passwords stored on the company’s internal servers for 14 years in plaintext.

Read more in my article on the Bitdefender Business Insights blog.


0 sec read

tripwire.com

Data on millions of Instagram accounts spills onto the internet

A security researcher has discovered a publicly-accessible database containing the details of millions of Instagram users, including their contact information.

Read more in my article on the Tripwire State of Security blog.


0 sec read

bitdefender.com

Don’t have your account hijacked. Secure your online accounts with more than a password, says Google

Research published at the end of last week argues that the typical user can significantly harden the security of their online accounts by linking a recovery phone number that can send an alert if there is suspicious activity on the account.

Read more in my article on the Hot for Security blog.


0 sec read

Smashing Security #128: Shackled ankles, photo scrapes, and SIM card swaps

A bad software update causes big headaches for Dutch police, but brings temporary freedom to criminals. SIM swaps are in the news again as fraudsters steal millions. And does your cloud photo storage service have a dirty little secret?

All this and much much more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Rip Off Britain’s David McClelland.


1 min read

Zara Larsson wants your password so she can watch Game of Thrones

When a celebrity asks if you can share your password…


37 sec read

bitdefender.com

Spying on personal alarms and GPS trackers is as simple as sending an SMS

Security experts found that the devices – manufactured in China, and rebadged by multiple companies around the world – are vulnerable to a simple hack that could allow a hacker to track their location, and even secretly listen in via the microphone.

Read more in my article on the Bitdefender BOX blog.


0 sec read

Ever app users uploaded billions of photos, unaware they were being used to build a facial recognition system

Users have shared the private photos stored in their email and social networks with Ever – not realising that they were being used to feed a facial recognition system.


1 min read

HMRC to finally erase five million voice records it collected without permission

The biometric voice data had been collected without explicit consent from people calling the HMRC’s telephone hotline for advice.


1 min read

So, how’s Facebook going to screw us next?

Facebook may have to pay up to US $5 billion due to an FTC inquiry into the social network’s privacy practices. But you can bet your bottom dollar we haven’t seen the last of the social network’s dodgy dealings.


57 sec read

bitdefender.com

Hacker could locate thousands of cars and kill their engines remotely via poorly-secured GPS tracking apps

App accounts were “protected” by a default password. That password? 123456.

Read more in my article on the Hot for Security blog.


0 sec read

Smashing Security #125: Pick of the thief!

WannaCry’s “accidental hero” pleads guilty to malware charges, Samsung and Nokia have fingerprint fumbles, the NCSC publishes a list of 100,000 dreadful passwords, and Apple finds itself at the centre of an identity mix-up.

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by John Hawes.


1 min read

Facial recognition fail allows politician’s kids to access his laptop

MEP Matt Carthy wondered why the battery life on his laptop was running down so quickly…


38 sec read

Facebook hoovered up 1.5 million users’ email contacts without permission… “unintentionally”

Just another day at Facebook.

Yes, they stole 1.5 million people’s address books without asking permission, but hey they say it was “unintentional” so….


1 min read

Facebook’s role in Brexit – and the threat to democracy

British investigative journalist Carole Cadwalladr gave a passionate speech at the TED conference in Vancouver this week. You should watch it.


49 sec read

Smashing Security #124: Poisoned porn ads, the A word, and why why why Wipro?

The hacker who lived the high life after spreading malware via porn sites, Wipro demonstrates how to turn a cybersecurity crisis into a PR disaster, and why are humans listening in to your Alexa conversations?

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Brian Honan.


1 min read