recentpopularlog in


« earlier   
Apple, Amazon server spy story is wake-up call to security pros (u) | Computerworld
I'm not convinced at the 'spy-chip' claims, but the tale helps illustrate the complex security challenges enterprises face.
Apple and Amazon have strenuously denied Bloomberg’s claims of a sophisticated hardware exploit against servers belonging to them and numerous other entities, including U.S. law enforcement  
amazon  apple  china  chip  hack  privacy  security  server  supply_chain 
yesterday by rgl7194
Apple to Congress: Chinese spy-chip story is “simply wrong” | Ars Technica
"Our internal investigations directly contradict every consequential assertion."
Apple isn't relenting in its attacks on last week's Bloomberg story claiming that tiny Chinese chips had compromised the security of Apple and Amazon data centers. In a Monday letter to Congress, Apple wrote that the claims in the Bloomberg story were "simply wrong."
Bloomberg's story, published last Thursday, claimed that the Chinese government had secretly added spy chips to the motherboards of servers sold by Supermicro. According to Bloomberg, these servers wound up in the data centers of almost 30 companies, including Apple and Amazon. But the three companies featured in the story—Apple, Amazon, and Supermicro—have all issued broad and strongly worded denials.
amazon  apple  china  chip  hack  privacy  security  server  supply_chain 
yesterday by rgl7194
Is two-factor authentication (2FA) as secure as it seems? - Malwarebytes Labs | Malwarebytes Labs
Two-factor authentication (2FA) was invented to add an extra layer of security to the—now considered old-fashioned and insecure—simple login procedure of entering a username and password.
One of the most well-known examples of 2FA is when you try to log into a familiar website from a different machine or from a different location, which results in a different IP. With 2FA-enabled login procedures, you will first enter your username and password on the computer and then receive a text message to your phone providing you with a verification code. You must enter that verification code on the computer to complete the login procedure.
security  privacy  2FA 
yesterday by rgl7194
Why OPSEC Is for Everyone, Not Just for People with Something to Hide
Originally posted by CyberSecStu on, reposted here with permission from him
OPSEC (Operational Security) is a term derived from the U.S. military and is an analytical process used to deny an adversary information that could compromise the secrecy and/or the operational security of a mission. The very process of performing OPSEC or protecting yourself from an adversary not only plays a very important role in both offensive and defensive security strategies but also in everyday life.
Examples of OPSEC that pertain to this article include protecting the real identity of someone who has chosen to create a pseudonym that black hat and white hat hackers most commonly will undertake online. The process of ensuring that critical information, such as IP addresses, language used, writing styles, email accounts, personal traits etc. cannot be used to unmask their real identity is a constant process.
privacy  security  anonymity  data  sharing  social_media 
yesterday by rgl7194
Facebook security breach: Up to 50m accounts attacked - BBC News
Facebook says almost 50 million of its users were left exposed by a security flaw.
Facebook  Hacks  Security  InternetSecurity  BBCNews  Privacy  Technology 
yesterday by dk33per
#youbroketheinternet So We Got Tracked Anyway
is contained in that database, so your browser will a
yesterday by paulantoine
RT : regulators in Ireland are investigating over the extent of its data collection via its “t. co” UR…
Privacy  from twitter
yesterday by kcarruthers
Facebook Is Giving Advertisers Access to Your Shadow Contact Information
Last week, I ran an ad on Facebook that was targeted at a computer science professor named Alan Mislove. Mislove studies how privacy works on social networks and had a theory that Facebook is letting advertisers reach users with contact information collected in surprising ways. I was helping him test the theory by targeting him in a way Facebook had previously told me wouldn’t work. I directed the ad to display to a Facebook account connected to the landline number for Alan Mislove’s office, a number Mislove has never provided to Facebook. He saw the ad within hours.
facebook  advertising  privacy  security  data 
yesterday by rgl7194
Facebook October 2018 security breach: Everything you need to know | iMore
Around 30 million people had their information compromised.
Earlier this year, Facebook came under fire for sharing heaps of data for over 87 million users with Cambridge Analytica. As if the company wasn't already having a tough time regaining the trust of its user base, Facebook's now announced that information for around 30 million people was exposed during an attack it shut down in September.
Here's everything you need to know.
The latest news
October 13, 2018: Find out if you've been affected by the October 2018 Facebook security breach
Facebook now has a dedicated page on its site to allow you to see whether your account was one of the 30 million affected by its most recent security breach.
Click here to see if you're Facebook account was affected
The page offers information about what happened and the current status of the investigation. At the bottom of the page, you'll see a special box with "Is my Facebook account impacted by this security issue?"
If you are signed in to Facebook, you'll see the status of your account and whether it was affected by the breach. If you don't see the box, sign in to your Facebook account and go back to the page.
Whether you've been affected by the most recent Facebook security breach or not, it's important to lock down your account in the most secure way possible, even at the expense of convenience.
Despite Facebook's irresponsible recommendation that "There's no need for anyone to change their passwords...," you should change your password regularly using a unique complex password.
breach  data  facebook  privacy  security 
yesterday by rgl7194
30 Million Facebook Accounts Were Hacked: Check If You're One of Them
Late last month Facebook announced its worst-ever security breach that allowed an unknown group of hackers to steal secret access tokens for millions of accounts by taking advantage of a flaw in the 'View As' feature.
At the time of the initial disclosure, Facebook estimated that the number of users affected by the breach could have been around 50 million, though a new update published today by the social media giant downgraded this number to 30 million.
breach  data  facebook  privacy  security 
yesterday by rgl7194
An important update about Facebook's recent security incident | Facebook Help Center
Is my Facebook account impacted by this security issue?
Based on what we've learned so far, your Facebook account has not been impacted by this security incident. If we find more Facebook accounts were impacted, we will reset their access tokens and notify those accounts.
breach  data  facebook  privacy  security 
yesterday by rgl7194
Here’s how to see if you’re among the 30 million compromised Facebook users | Ars Technica
The bad news: Private data was stolen. The good: Fewer accounts were affected.
The attackers who carried out the mass hack that Facebook disclosed two weeks ago obtained user account data belonging to as many as 30 million users, the social network said on Friday. Some of that data—including phone numbers, email addresses, birth dates, searches, location check-ins, and the types of devices used to access the site—came from private accounts or was supposed to be restricted only to friends.
The revelation is the latest black eye for Facebook as it tries to recover from the scandal that came to light earlier this year in which Cambridge Analytica funneled highly personal details of more than 80 million users to an organization supporting then-presidential candidate Donald Trump. When Facebook disclosed the latest breach two weeks ago, CEO Mark Zuckerberg said he didn’t know if it allowed attackers to steal users’ private data. Friday’s update made clear that it did, although the 30 million people affected was less than the 50 million estimate previously given. Readers can check this link to see what, if any, data was obtained by the attackers.
breach  data  facebook  privacy  security 
yesterday by rgl7194

Copy this bookmark:

to read