US Senator Roy Wyden (D-OR) has introduced a new data privacy bill whereby businesses could face much harsher penalties for privacy violations. The bill, known as the Mind Your Own Business Act will contain the most comprehensive protections for Americans’ private data and will go further than the EU General Data Protection Regulation (GDPR). The […]
Author: Meera Narendra
#Privacy: Phishing attack targets Stripe users
A phishing campaign has been identified attempting to harvest customers’ bank account information and user credentials. The Cofense Phishing Defense Center (PDC) researchers who discovered the Stripe phishing campaign, found that the attackers are using the “Review your details” button, which redirects customers to their phishing pages, to hide their actual destination. “The true destination […]
#Privacy: More than 550 fake election web domains identified
Research by Digital Shadows has discovered over 550 fake domains set up against the 19 Democrat and four Republican presidential candidates. The motivations behind setting up the sites are varied, with over 68% simply redirecting the user to another domain which tends to be that of a rival candidate. For example, voters may type in […]
#Privacy: Phishing continues to be the biggest source of fraud
In the latest Quarterly Fraud Report for Q2 2019 by RSA security, rogue mobile app fraud has soared 191% in 2019. The report revealed that global fraud attacks have increased significantly by 63% from 2H 2018 to 1H 2019, with the growing source of malicious activity being fake mobile applications. Phishing still remains one of […]
#Privacy: Schools in Vermont are spying on their students’ online activity
A report by VTDigger has revealed that five schools in Vermont have hired a Burlington-based firm to track the online activities of their students. VTDigger sent a public records request to all 52 superintendents in Vermont asking if any social media monitoring contracts had been signed. Of the 52, five stated that they either had […]
#Privacy: MCMC suspends contract of company responsible of data breach
The Malaysian Communications and Multimedia Commission (MCMC) has suspended the contract of the independent contractor Nuemera (M) Sdn Bhd. The 2014 data breach exposed the personal details of 46.2 million mobile phone subscribers, leaking the unique serial numbers linked to individual mobile phones, phone numbers, home addresses and names. The suspension was confirmed in a […]
#Privacy: Hundreds of thousands of CVs exposed online
Both Authentic Jobs and Sonic Jobs have exposed more than 200,000 CVs, subsequently making them publicly accessible to possible threat actors. Security researcher Gareth Llewellyn discovered the data breaches. Authentic Jobs, a US-based jobs board utilised by companies including the New York Times, made 221,130 CVs publicly accessible. Whilst Sonic Jobs, a UK jobs app […]
#Privacy: Phorpiex botnet made $115,000 from spam sextortion emails in five months
Following a five month investigation, Check Point Research has published its results on the “largest scale sextortion campaign” it has seen. The sextortion campaign informs its victims that it has compromising images or videos of them and requests a ransom demand. During the 5 month period, victims sent more than 14 Bitcoins (over $11,000) to […]
#Privacy: More than 100 million IoT attacks detected during H1 of 2019
Kaspersky honeypots detected 105 million attacks on IoT devices coming from 276,000 unique IP addresses in the first half of 2019. The number of attacks is almost nine times greater than the number of attacks found in the first half of 2018, with around 12 million attacks originating from 69,000 IP addresses being identified. Cyberattacks […]
#Privacy: Researchers have devised a method to scoop unencrypted Tor network traffic data
Researchers have found a way to harvest unencrypted Tor network data from exit nodes and piece them together. Deloitte Canada researchers, Adam Podgorski and Milind Bhargava have also claimed to be able to obtain personally identifiable information (PII) of mobile users. The irony is that Tor is an anonymising software and network, and allows traffic […]