Ring makes 2FA mandatory to keep hackers out of your doorbell account

Credit to Author: Lisa Vaas| Date: Thu, 20 Feb 2020 10:03:25 +0000

Amazon is following Google’s lead by forcing all users to use two-factor authentication when logging into their Ring accounts.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/ZP4hOfnjH24″ height=”1″ width=”1″ alt=””/>

Read more

Sensitive plastic surgery images exposed online

Credit to Author: Danny Bradbury| Date: Tue, 18 Feb 2020 11:04:56 +0000

Researchers at VPN advisory company vpnMentor have found yet another online data exposure caused by a misconfigured cloud database.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/3bHx9OL42rQ” height=”1″ width=”1″ alt=””/>

Read more

Data about inmates and jail staff spilled by leaky prison app

Credit to Author: Lisa Vaas| Date: Wed, 12 Feb 2020 10:16:24 +0000

A web-mapping project came across detainees’ prescriptions and other PII that could be used by identity thieves to victimize prisoners.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/ypFJWLIWMOE” height=”1″ width=”1″ alt=””/>

Read more

UN report alleges that Saudi crown prince hacked Jeff Bezos’s phone

Credit to Author: Lisa Vaas| Date: Thu, 23 Jan 2020 11:38:10 +0000

Digital forensic evidence points to the phone’s massive, months-long data egress having likely been triggered by Pegasus mobile spyware.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/cudbgBhrFvg” height=”1″ width=”1″ alt=””/>

Read more

Apps are sharing more of your data with ad industry than you may think

Credit to Author: Lisa Vaas| Date: Thu, 16 Jan 2020 13:43:44 +0000

Apps like Grindr, Tinder and Happn are (over-)sharing data about sexuality, religion, and location with a shadowy network of data brokers. And it’s not just dating apps that are doing it…<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/NPeC4ksaHAY” height=”1″ width=”1″ alt=””/>

Read more

Please don’t buy this: smart doorbells

Credit to Author: David Ruiz| Date: Mon, 09 Dec 2019 17:15:56 +0000

This holiday season, please reconsider buying smart doorbells to protect your online shipments. The cybersecurity and privacy risks are too severe.

Categories:

Tags:

(Read more…)

The post Please don’t buy this: smart doorbells appeared first on Malwarebytes Labs.

Read more

A week in security (December 2 – December 8)

Credit to Author: Malwarebytes Labs| Date: Mon, 09 Dec 2019 16:47:06 +0000

A roundup of the previous week’s security blogs and other news, including a new ransomware, an explanation of containerization, fixing leaky buckets, jewelry heists, and more.

Categories:

Tags:

(Read more…)

The post A week in security (December 2 – December 8) appeared first on Malwarebytes Labs.

Read more

Ad fraud: Fake local news sites are rolling in the dough

Credit to Author: Lisa Vaas| Date: Tue, 03 Dec 2019 11:11:41 +0000

“forbesbusinessinsider.com?” Names like that sound close enough to real news domains to pass, but bots are the only ones visiting.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/qLSQ70kb1xM” height=”1″ width=”1″ alt=””/>

Read more

Basta un laser per hackerare gli assistenti vocali di smartphone e altoparlanti

Credit to Author: Sophos Italia| Date: Thu, 14 Nov 2019 14:42:17 +0000

Come ben sanno gli appassionati di tecnologia, Google Assistant, Amazon Alexa, Apple Siri e Facebook Portal sono piattaforme Internet basate sull&#8217;intelligenza artificiale che gli utenti controllano emettendo comandi vocali tramite smartphone o altoparlanti domestici &#8220;intelligenti&#8221;. O almeno è quello che abbiamo pensato fino a questa settimana, quando un team americano-giapponese ha pubblicato un documento di [&#8230;]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/nsLEHM3qvh8″ height=”1″ width=”1″ alt=””/>

Read more

Smartphone and speaker voice assistants can be hacked using lasers

Credit to Author: John E Dunn| Date: Wed, 06 Nov 2019 13:03:16 +0000

A US-Japanese team published a research paper which confirms an interesting and under-estimated possibility – these devices will also accept “signal injection” commands sent to them using pulses of laser light over distances of a hundred metres or more.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/_7WhfQGzceQ” height=”1″ width=”1″ alt=””/>

Read more