Search Results for “Verge”


August 20, 2019
Tony Romm / The Washington Post

Tony Romm / The Washington Post  
Facebook Unveils ‘Off-Facebook Activity’ Tool Giving Users Leeway to Limit Data Collected About Them Elsewhere on the Web, New Controls Do Not Allow Users to Delete Data in Full

Facebook unveiled its long-awaited feature, called “Off-Facebook Activity,” which allows users to limit businesses, apps and other groups that collect data about them on the Web and pass that information to the tech giant. The feature does not, however, allow users to delete that information from Facebook in full but instead has been designed to “shed more light” on a form of online tracking that determines some of the ads people see on Facebook. Users now can choose to remove this history from their accounts and turn off some or all of that tracking in the future although these actions merely disconnect information from being identified to a specific user but do not delete it. The new controls also won’t prevent Facebook from reporting back to another business whenever users generally purchase their product after seeing an ad targeted to them. The complexity of the system likely won’t prevent privacy advocates from criticizing the company because company CEO Mark Zuckerberg implied a more robust deletion tool one year ago when he vowed Facebook would develop a “Clear History” tool.

Related: TechCrunch, CNET, The Guardian, The Verge, Buzzfeed News, Wall Street Journal, Facebook, New York Times, BBC News, The Verge, Tech Insider, AP Breaking News, The Sun, Slashdot, Tech Insider, WRAL Tech Wire, Z6 Mag, New York Times – Business, Neowin, Tech Insider, Sky News, The Next Web, Channel News Asia, SecurityWeek, The Straits Times Tech News, CNN.com

Tweets:@geoffreyfowler @kashhill @ashk4n @fbnewsroom @zackwhittaker @ruskin147 @tonyromm @gcluley @stevekovach @alexhern

TechCrunch: Facebook unveils new tools to control how websites share your data for ad-targeting
CNET: How to use Facebook’s new privacy tool to control your data
The Guardian: Facebook launches ‘clear history’ tool – but it won’t delete anything
The Verge: Facebook’s Clear History privacy tool finally begins rolling out in three countries
Buzzfeed News: You Can Finally See All Of The Info Facebook Collected About You From Other Websites
Wall Street Journal: Facebook to Let Users Control Their Data From Other Companies
Facebook: Now You Can See and Control the Data That Apps and Websites Share With Facebook
New York Times: Facebook’s New Tool Lets You See Which Apps and Websites Tracked You
BBC News: Facebook to stop stalking you off-site – but only if asked
The Verge: Facebook’s Clear History privacy tool finally begins rolling out in three countries
Tech Insider: Facebook is finally letting users control the info that other websites are sharing with the social network about them (FB)
AP Breaking News: Facebook rolls out tool to block off-Facebook data gathering
The Sun: Facebook launches ‘off-platform activity’ tool to stop it tracking you across the internet – and you can even wipe your history
Slashdot: You Can Finally See All Of The Info Facebook Collected About You From Other Websites
Tech Insider: Advertisers have been grappling for alternatives ahead of Facebook’s ‘clear-history’ tool that could limit one of its most powerful targeting tools
WRAL Tech Wire: New Facebook tools enables users to turn off tracking
Z6 Mag: Control the data you share via ‘Off-Facebook Activity’
New York Times – Business: Facebook’s New Tool Lets You See Which Apps and Websites Tracked You
Neowin: Facebook adds new tool that helps you control its off-site stalking
Tech Insider: Facebook is finally letting users control the info that other websites are sharing with the social network about them (FB)
Sky News: Facebook to let users stop app and website tracking
The Next Web: Facebook lets you (sorta) control what info it gets from other sites
Channel News Asia: Facebook launches tool to let users control data flow
SecurityWeek: Facebook Launches Tool to Let Users Control Data Flow
The Straits Times Tech News: Facebook launches tool to let users control data flow
CNN.com: Facebook finally rolls out privacy tool for your browsing history

@geoffreyfowler: Facebook’s long-promised “clear history” tool has arrived, but it is not the data re-set we really needed.@tonyromm has the details here @posttech : https://wapo.st/2ZkWXoYWhat’s missing? Thread -->
@kashhill: In news you can't actually use yet (unless you live in Ireland, S. Korea, or Spain), Facebook is giving you a way to make your Instagram ads way less creepy.
@ashk4n: Facebook just announced their long awaited 'Clear History' tool -- tho it only really lets you 'Disconnect Activity' (and even then its pretty limited)PR release: https://newsroom.fb.com/news/2019/08/off-facebook-activity/Fact sheet: https://facebook.com/off-facebook-activityTechnical writeup: https://engineering.fb.com/data-infrastructure/off-facebook-activity/
@fbnewsroom: With Off Facebook Activity, you can see a summary of the info that websites and apps send to help show you relevant ads - you can also disconnect this info from your account. Learn more: https://newsroom.fb.com/news/2019/08/off-facebook-activity/
@zackwhittaker: This sounds great! But nowhere in this blog post does it say how we get it.
@ruskin147: My story on Facebook’s new “Off-Facebook Activity” tool which shows you why those shoes are following you around the Internet
@tonyromm: Zuck in 2018 used the word "flush" and other FB execs used the word "delete" but it's not exactly what's happening here, so it will be interesting to see how users and regulators react
@gcluley: Good thread here on Facebook's "Clear History" announcement.Most people won't ever turn off "Off-Facebook activity" of course.. but even if you do, you may be interested to hear what it does (and doesn't) do.
@stevekovach: The best way to clear your Facebook history is to delete Facebook
@alexhern: The clear history tool Mark Zuckerberg announced over a year ago is finally coming (except it won’t actually clear your history from Facebook’s servers)


October 2, 2019
Catalin Cimpanu / ZDNet

Catalin Cimpanu / ZDNet  
Google Announces New Privacy Updates for Google Maps, YouTube and Google Assistant, Launches New Password Checkup

Google has announced new privacy-centered updates for three of its services, Google Maps, YouTube, and Google Assistant. Google Maps will be getting an incognito mode that will roll out on Android later this month with iOS to follow. YouTube now has a history auto-delete option, and Google Assistant will launch over the coming weeks support for voice commands that will help users manage the Assistant’s privacy settings. Google also launched a new Password Checkup feature that checks users’ passwords if they’ve leaked at other online services.

Related: CNBC, CNET, USA Today, BleepingComputer.com, BetaNews, AP Breaking News, VentureBeat, The Verge, Pocket-lint, CTVNews.ca, USA TodayE-Commerce Times, Gearburn, TechNadu, The Parallax, Techradar, Fortune, How-To Geek, Google, Fast Company, CNET, The Verge, ZDNet Security, Engadget, BleepingComputer.com

CNBC: Google rolls out updated privacy tools for YouTube, Maps
CNET: Google beefs up user privacy controls for Assistant, YouTube
USA Today: Google will warn you when your passwords are too simple to guess and used too often
BleepingComputer.com: Google Expands Privacy Controls Across Youtube, Maps, and Assistant
BetaNews: Google introduces more privacy controls for Maps, YouTube and Assistant
AP Breaking News: Google rolls out updated privacy tools for YouTube, Maps
VentureBeat: Google boosts privacy and security with incognito mode in Maps, auto-delete for YouTube, and other tools
The Verge: Google announces three new ways to hide your personal activity from Google
Pocket-lint: Pixel 4’s voice recorder app will automatically transcribe for you
CTVNews.ca: Google rolls out updated privacy tools for YouTube, Maps
USA Today: Google will warn you when your passwords are too simple to guess and used too often
E-Commerce Times: Google Promises Assistant Users More Audio Privacy
Gearburn: Huawei Mate 30: potential Google app support is dealt another blow
TechNadu: The Market Prospect of Huawei Mate 30 May Have Just Been Destroyed
The Parallax: Harris poll backs Google plan to improve password security
Techradar: Huawei ban: the global fallout explained
Fortune: Google’s New Password Security Tool Flags Compromised Websites
How-To Geek: Google Announces Maps Incognito Mode and More Privacy Controls
Google: Keeping privacy and security simple, for you
Fast Company: This new Google tool protects you against dangerous passwords
CNET: Google wants to warn you if you reuse passwords or create weak ones
The Verge: Google is making it easier to check if your passwords have been compromised in a data breach
ZDNet Security: Google launches Password Checkup feature, will add it to Chrome later this year
Engadget: Google’s Password Checkup feature will be built into Chrome
BleepingComputer.com: Google’s Password Manager Now Warns About Compromised Accounts


August 6, 2019
Thomas Brewster / Forbes

Thomas Brewster / Forbes  
Justice Department Indicts Pakistani Man for Allegedly Paying More Than $1 Million in Bribes to AT&T Employees to Unlock More Than Two Million Phones

A Pakistani man Muhammad Fahd has been extradited from Hong Kong to the U.S. over allegations he paid more than $1 million in bribes to AT&T employees over five years to unlock more than 2 million phones, according to a Justice Department indictment.  Fahd and his co-conspirator Ghulam Jiwani are accused of paying as much as $420,000 to individual AT&T staff at a call center in Boswell, Washington, asking them to unlock phones tied to the AT&T network on behalf of people who were paying him to help them escape from AT&T contracts. Fahd is further accused of asking employees to install malware on AT&T computers so that he could study how the telecoms giant’s internal processes worked and of creating malware that used AT&T employees passwords to get access to different computers so that he could do the unlocking himself. On top of that, Fahd is accused of paying AT&T employees to install snooping hardware, malicious routers and rogue Wi-Fi access points in the building that again allowed for further access to supposedly protected computers. He faces up to 20 years in jail. Three co-conspirators have already pleaded guilty to accepting thousands of dollars to assist in the scheme.

July 29, 2019
Emily Flitter and Karen Weise / New York Times

Emily Flitter and Karen Weise / New York Times  
Firewall Misconfiguration by Capital One Allowed Hacker to Steal Millions of Credit Applications, Social Security and Bank Account Numbers Affecting More Than 100 Million People in North America

In one of the largest cases of bank data theft ever, software engineer Paige Thompson hacked into a server holding customer information for Capital One, exploiting a firewall misconfiguration in the bank’s network to steal millions of credit card applications, federal prosecutors say. Thompson, who used the online handle “erratic” was the organizer of a group on Meetup, a social network, called Seattle Warez Kiddies, described as a gathering for “anybody with an appreciation for distributed systems, programming, hacking, cracking.” The F.B.I. noticed her activity on Meetup and used it to trace her other online activities, eventually linking her to posts describing the data theft on Twitter and the Slack messaging service. Thompson stole 140,000 U.S. Social Security numbers and 77,000 bank account numbers, along with one million Canadian social insurance numbers affecting more than 100 million people in the United States and Canada. A“firewall misconfiguration” by the bank had allowed Ms. Thompson to communicate with the server where Capital One was storing its information and, eventually, gain access to customer files, an FBI agent investigating the case said in court documents. Ms. Thompson worked as a systems engineer at Amazon from 2015 to 2016.

Related: CNN, Reuters, Associated Press, Axios, CNBC, NBC News, Politico, Capital One, The Register, Bloomberg, Washington Post, TechCrunch, TechCrunch, Wired, Justice.gov, Ars Technica, CNET, Wall Street Journal, The Verge, The Hill, Venture Beat, Law360, Reuters, Daily Mail,DataBreachToday.com, BGR, USATODAY, Business Insider, The Daily Swig, Newsweek, Financial Times, CRN, CRN, UPI.comDataBreaches.net, SecurityWeek, MobileSyrup.com, BetaNews, The Verge, GBHackers On Security, SlashGear » security, E-Commerce Times, CNN.com, PCMag.com, The VergeEvening Standard, EngadgetMarketWatch.com – Software Industry News, TechSpot, Digital Trends, Neowin, Fast Company, Mother Jones, New York Daily News, New on MIT Technology Review, FOX News, The Hacker News, Help Net Security, CBSNews.com, Fortune, Technology News | Boston.com, SecurityWeek, The Huffington Post, Cyberscoop, IT World Canada, ARN, The Guardian, Digital Trends, The Next Web, Android Central , GeekWire, SC Magazine, Techerati, SlashdotABC News: U.S., Graham Cluley, Japan Times,Security Affairs, Cyber Kendra, PYMNTS.com, Heavy.com, Computer Business Review, TechNadu, Silicon Republic, Infosecurity Magazine, The State of Security, DataBreaches.netGadgets Now, Courthouse News Service, BBC News – WorldBleepingComputer.comITV News, RT USA, AOL, New York Post, EJ Insight, Mercury News, TODAYonline, CBC , Deutsche Welle, Gizmodo, News : NPR, POLITICO, Gizmodo, Daily BeastGeekWire

Tweets:@zackwhittaker @briankrebs @cnbcnow @gregotto @yoda @RepKatiePorter @zackwhittaker @Wired @BleepingComputer @kimzetter @dnvolz @BleepingComputer @McGrewSecurity @weldpond @h0tdish @hacks4pancakes @RayRedacted @catcalvinla @malwarejake @somanyshrimp @TorresLuzardo

CNN: A hacker gained access to 100 million Capital One credit card applications and accounts
Reuters: Capital One reveals 100M affected by data breach, hacker arrested
Associated Press: Capital One says hacker gained access to personal information of more than 100 million people
Axios: 100 million credit card applications stolen from Capital One
CNBC: Capital One data breach exposes tens of thousands of Social Security numbers, linked bank accounts
NBC News: Over 100 million credit card applicants at risk in Capital One breach, Seattle woman arrested
Politico: Capital One reveals historic data breach after FBI arrests Seattle suspect
Capital One: Capital One Announces Data Security Incident
The Register: Capital One gets Capital Done: Hacker swipes personal info on 106 million US, Canadian credit card applicants
Bloomberg: Capital One Says Breach Hit 100 Million Individuals in U.S.
Washington Post: Capital One says data breach affected 100 million credit card applications
TechCrunch: Capital One’s breach was inevitable, because we did nothing after Equifax
TechCrunch: Capital One hacked, over 100 million customers affected
Wired: THE ALLEGED CAPITAL ONE HACKER DIDN’T COVER HER TRACKS
Justice.gov: Seattle Tech Worker Arrested for Data Theft Involving Large Financial Services Company
Ars Technica: Feds: former cloud worker hacks into Capital One and takes data for 106 million people
CNET: Capital One data breach involves 100 million credit card applications
Wall Street Journal: Capital One Reports Data Breach Affecting 100 Million Customers, Applicants
The Verge: Massive Capital One breach exposes personal info of 100 million Americans
The Hill: Woman arrested, accused of hacking 100 million Capital One records
Venture Beat : Capital One announces hack affecting 106 million U.S. and Canadian customers
Law360: Capital One Says Breach Impacted 106M As Suspect Arrested – Law360
Daily Mail : Ex-tech worker arrested for Capital One hack after stealing data from 100 million customers
DataBreachToday.com: Woman Arrested in Massive Capital One Data Breach
BGR: Hacker steals data for more than 100 million Capital One users, then brags about it and gets arrested
USATODAY: Massive data breach hits Capital One affecting more than 100 million customers
Business Insider: Capital One data breach, affecting tens of millions
The Daily Swig: Millions affected by Capital One data breach
Newsweek: Capital One Data Breach: How to Know, and What You Should Do, If Your Account Has Been Compromised
Financial Times: Capital One reports massive data breach
CRN: Capital One Breach Exposed Data From 106M Credit Card Applicants, Users
UPI.com: Capital One data breach affects 100M credit card applicants
DataBreaches.net: Capital One says data breach affected 100 million credit card applications
SecurityWeek: CapitalOne Discloses Massive Data Breach: 106 Million Impacted
MobileSyrup.com: Capital One data breach could have affected six million Canadian bank accounts
BetaNews: Personal details of 106 million Americans and Canadians stolen in huge Capital One data breach
The Verge: Massive Capital One breach exposes personal info of 100 million Americans
GBHackers On Security: Capital One Hacked – Over 100 Million Credit Card Application Data Exposed
SlashGear » security: Capital One hack affects over 100 million people in the US and Canada
E-Commerce Times: Equifax Data Breach Settlement No Wrist Slap
CNN.com: Worried about the Capital One hack? Here’s what to do
PCMag.com: Capital One Suffers Data Breach Affecting 100 Million Customers
Evening Standard: Capital One data breach 2019: What to do if you have been affected
Engadget: Capital One data breach affected 100 million in the US
MarketWatch.com – Software Industry News: Everything you need to know about the massive Capital One hack, but were afraid to ask
TechSpot: Capital One hack exposed 100 million US customers’ personal details
Digital Trends: New Capital One data breach affects 100 million people. Here’s the very latest
Neowin: Over 100 million accounts compromised after Capital One data breach
Fast Company: Capital One data breach: what was stolen and how to find out if you are affected
Mother Jones: What’s In Your Wallet?
New York Daily News: Capital One hit with data breach affecting some 100 million U.S. customers
New on MIT Technology Review: A hacker stole the personal data of 100 million Capital One customers
FOX News: Capital One data breach exposes info of 106M customers, applicants; suspect arrested
The Hacker News: Capital One Data Breach Affects 106 Million Customers; Hacker Arrested
Help Net Security: Capital One breach: Info on 106 million customers compromised, hacker arrested
CBSNews.com: Capital One data breach hits more than 100 million people
CNBC: Capital One data breach exposes tens of thousands of Social Security numbers, linked bank accounts
Fortune: Hacker May Have Stole Info About Millions of Capital One Customers, U.S. Says
Technology News | Boston.com: Capital One target of massive data breach
SecurityWeek: Capital One Target of Massive Data Breach
The Huffington Post: Credit Card Company Reveals 100 Million People May Be Affected By Hack
Cyberscoop: Capital One announces massive data breach; lone suspect arrested in Seattle
IT World Canada: Six million Canadians impacted by Capital One data breach
ARN: Capital One: hacker gained access to personal information of over 100 million Americans
The Guardian: Capital One: hacker stole data of over 100m Americans
Ars Technica: Hacker ID’d as former Amazon employee steals data of 106 million people from Capital One
Axios: 100 million credit card applications were stolen from Capital One
The Next Web: Capital One data breach compromises 106 million customers’ personal data
Android Central : Capital One breach exposes personal details of over 100 million customers
SC Magazine: Capital One hacker who stole personal info on 100M arrested | SC Media
AP Breaking News: Capital One target of massive data breach
Techerati: Capital One breach affecting 106 million customers caused by misconfigured cloud storage
Slashdot: Capital One Says Hacker Breached Accounts of 100 Million People; Ex-Amazon Employee Arrested
ABC News: U.S.: Capital One target of massive data breach
Graham Cluley: Woman arrested after Capital One hack spills personal info on 106 million credit card applicants
Japan Times: Hacker accesses over 100 million Capital One credit applications in massive data breach
Zero Hedge: Capital One Admits Massive Data Breach: 100 Million Americans Affected, Seattle Woman Arrested
Security Affairs: Capital One data breach: hacker accessed details of 106M customers before its arrest
Cyber Kendra: Capital One Suffered Data Breach 106 Million People Affected
PYMNTS.com: Cap One Hack Hits 100M Credit Card Applications
Heavy.com: Paige Adele Thompson: 5 Fast Facts You Need to Know
Computer Business Review: Capital One Hacker was Ex-AWS Employee
TechNadu: Capital One Reports a Major Data Breach Affecting 106 Million Individuals in the USA & Canada
Infosecurity Magazine: Capital One Breached by Cloud Insider in Major Attack
Tech Insider: Amazon’s cloud was at the heart of the big Capital One hack, even though it doesn’t seem to be at fault (AMZN, COF)
The State of Security: Woman arrested after Capital One hack spills personal info on 106 million credit card applicants
DataBreaches.net: Capital One says data breach affected 100 million credit card applications
Gadgets Now: Capital One hacked, says information of 100 million-plus users leaked
Reuters: Capital One says information of over 100 million individuals in U.S., Canada hacked
BBC News – World: Capital One data breach: Arrest after details of 100m US individuals stolen
TIME: Capital One Information Hacked in Massive Data Breach
NDTV Gadgets360.com: Capital One Bank Targeted in Massive Data Breach
BleepingComputer.com: Capital One Data Breach Affects 106 Million People, Suspect Arrested
ITV News: 100 million applications targeted in Capital One bank data breach
RT USA: 100mn+ people’s data exposed in Capital One bank hack, thousands of SSNs & accounts leaked
AOL: Capital One: information of over 100 mln individuals in U.S., Canada hacked
New York Post: Capital One reveals 100M affected by data breach, hacker arrested
EJ Insight: Capital One data breach affects millions in US, Canada
Mercury News: Capital One: Hacker got info on 100M in the US, 6M in Canada
CBC : Hacker obtained personal information of 6 million people in Canada
Deutsche Welle: Capital One data theft: US arrests ‘erratic’ hacker
Gizmodo: Hacker Claims to Be in Possession of Personal Info on Up to 20,000 LAPD Applicants
The Register: Capital One gets Capital Done: Hacker swipes personal info on 106 million US, Canadian credit card applicants
POLITICO: Capital One reveals historic data breach after FBI arrests Seattle suspect
Daily Beast: Tens of Millions of Credit Card Applications Stolen in Capital One Breach
GeekWire: Seattle engineer arrested for Capital One hack that affected 100M people

@zackwhittaker: Wow. Capital One discloses massive data breach: 100M in US, 6M in Canada. One person in FBI custody. Credit files, applications, the lot. Hard to see this as anything other than Equifax 2.0. (link: http://press.capitalone.com/phoenix.zhtml?c=251626&p=irol-newsArticle&ID=2405043) press.capitalone.com/phoenix.zhtml?…
@briankrebs: Nice write up. Yes, this appears to be her resume. Worked at Amazon 2015-2016
@cnbcnow: BREAKING: Capital One says data breach has “affected approximately 100M individuals in the United States & approximately 6M in Canada” but “no credit card account numbers or log-in credentials were“ taken and “99% of Social Security numbers” weren’t stolen
@gregotto: According to the FBI, a firewall misconfiguration was partly responsible for allowing Thompson to access the Capital One cloud storage
@yoda: what kind of wordsmith fuckery is this???
@RepKatiePorter: One week *to the day* after Equifax announced its settlement terms. It’s clear corporations won’t clean up their acts on their own. We need to create an enforceable federal data privacy standard, so I’m drafting that bill.
@zackwhittaker: Incredible. Capital One's data breach site is titled "Facts."And yet it also pulls this bullshit by saying that no Social Security numbers were breached... except for all the Social Security numbers that were breached.Fuck you, Capital One.
@Wired: On Monday, the FBI and Capital One disclosed a data breach of 106 million credit card applications, one of the biggest breaches of a major financial institution ever.And now someone has been arrested in connection with the crime:
@BleepingComputer: The suspect allegedly posted about her accessing of Capital One's data on GitHub. A security researcher saw her post and contacted Capital One.
@kimzetter: This Capital One breach definitely has more going on to it than the headlines suggest. Perhaps not a coordinated vuln disclosure gone wrong ?but something is def weird about it - she used Tor to access the data but then publicly posted the data to an account with her name?
@dnvolz: The arrested suspect behind the hack, Paige Thompson, is a former employee of Amazon Web Services, according to people familiar with the matter. She is accused of breaching a misconfigured Capitol One firewall to access data stored in AWS. via @nicole_hong
@BleepingComputer: This breach was discovered by a security researcher who responsibly disclosed a vulnerability to Capital One. After investigating the vulnerability, Capital One discovered that an unauthorized user accessed their systems and data between March 22 and 23, 2019.
@McGrewSecurity: Located the Capital One hacker's twitter (also thanks to those that backchanneled on the topic). Clearly they were/are in a bad state mentally/emotionally. I've deleted the earlier tweets about her. I hope they find some peace.
@weldpond: The FBI said the suspect, Paige A. Thompson, was apprehended after she “made statements on social media for evidencing the fact that she has information of Capital One, and that she recognizes that she has acted illegally,”
@h0tdish: Insider/ex employee threats and those who willingly commit crimes, creating, selling malware or stealing info via exploit/breach ARE NOT hero's & anyone who frames it that way has to explain why they're not currently launching a legal $ raiser for her but did for other criminals.
@hacks4pancakes: I feel a great disturbance in the Force, like dozens of Capital One cybersecurity analysts who were screaming futilely for into the wind for years were suddenly silenced.
@RayRedacted: I have removed all of my OSINT posts about the Capital One hacker, because it is clear that she is suffering from mental illness.Mental illness does not discriminate. It can affect anyone. I truly hope she gets the help she needs.
@catcalvinla: At this point, I’m getting like two breach notices a day. Who DOESN’T have my info?
@malwarejake: Takeaways from #CapitalOne: 1. Having a disclosure program may have saved them. I'm FAR less likely to report to an org that lacks a disclosure policy. (link: http://press.capitalone.com/phoenix.zhtml?c=251626&p=irol-newsArticle&ID=2405043) press.capitalone.com/phoenix.zhtml?…
@somanyshrimp: Losing your personal information in a massive data breach is just a thing that happens now, like 110 degree days and regular mass shootings
@TorresLuzardo: I'm trying to come up with an analogy but there's really no topping this.No SSNs were stolen except 140,000 of them.


August 31, 2019
Brian Barrett / Wired

Brian Barrett / Wired  
Anonymous Hacker Compromised Twitter CEO Jack Dorsey’s Account Through SIM Swapping and Tweeted String of Racist Messages, Bomb Threats

An anonymous hacker took over Twitter CEO Jack Dorsey’s account for 20 minutes and used it to send out a string of racist messages and bomb threats. A group that calls itself the “Chuckle Gang,” which has broken into other high-profile Twitter accounts before, apparently broke into the @jack account at 3:45 pm and sent out dozens of tweets and retweets. Other who have been attacked by these hackers blamed so-called SIM swap attacks, with a particular focus on AT&T and Twitter confirmed that Dorsey’s breach was a SIM swap as well. It’s unclear, however, how Dorsey was able to regain access to his account so quickly if the attack was a result of a SIM swap.

Related: Deutsche Welle, Digital Trends, The Hill: CybersecurityAvira Blog, Firstpost, Sydney Morning Herald, Reuters, The Next Web, Tech Insider, Stars and Stripes, PCMag.com, ZDNet, ABC News: U.S., CBC, TribLIVE, Financial Times, Washington Post, SlashGear » security, Stuff.co.nz – Stuff, CNET News, ZDNet, New York Times, CBC, The A.V. Club, BuzzFeed – Tech, Sky News, Mashable, TORONTO STAR, Dark Reading: Attacks/Breaches, USA Today, Social Media Today , Vox, OneZero – Medium, FOX News, The Verge, VentureBeat, Gizmodo, Evening Standard, Daring FireballWindows Central , TechCrunch, Daily Dot, Tech Insider, CBSNews.com, Digital Trends, Heavy.com, Quartz, Neowin, Daily Beast, The Verge, Slashdot, CNET News, CNN.com, Android Central , San Francisco Chronicle, SFist, Axios, Vox, MobileSyrup.com, The Inquisitr News, CCN, AP Breaking News, iAfrikan, TIME, iMore, Memeburn, The Guardian, Android Central , RT USA, Boing BoingAndroid Authority, The Register, CNN.com, San Francisco Chronicle, Quartz, Cybersecurity Insiders, SC Magazine, THE INQUIRER, DataBreachToday.com, THE INQUIRER, iTnews – Security, PCMag.com, Haaretz.com

Deutsche Welle: Twitter CEO Jack Dorsey’s account sent racist tweets after hack
Digital Trends: Twitter CEO Jack Dorsey’s account was hacked and used to tweet racist messages
The Hill: Cybersecurity: Hillicon Valley: Twitter CEO Jack Dorsey’s account hacked | Google found iPhone security bug | YouTube reportedly to pay up to $200M to settle child privacy investigation | DNC expected to nix Iowa virtual caucus plans
Firstpost: Twitter CEO’s hacked account sends racist tweets before being secured
Sydney Morning Herald: Twitter CEO Jack Dorsey’s account hacked, racist tweets sent
Reuters: Twitter CEO’s hacked account sends racist tweets before being secured
Channel News Asia: Twitter CEO’s hacked account sends racist tweets before being secured
The Next Web: Twitter CEO Jack Dorsey’s account has been hacked
Tech Insider: Twitter CEO Jack Dorsey’s Twitter account was hacked to send out racist tweets with the n-word and phrases like ‘Hitler is innocent’ (TWTR)
Stars and Stripes: Twitter CEO Dorsey’s account sent racist tweets after hack
PCMag.com: Twitter CEO’s Account Hacked, Defaced With Racist Posts
ZDNet: Jack Dorsey’s Twitter account got hacked
ABC News: U.S.: Twitter CEO Dorsey’s account sent racist tweets after hack
CBC: Twitter says CEO’s account sent out racist, vulgar tweets after it was hacked
TribLIVE: Twitter CEO Jack Dorsey hacked; account sent racist tweets
Financial Times: Jack Dorsey’s Twitter account hacked
Washington Post: Twitter co-founder Jack Dorsey’s account hacked
SlashGear » security: Twitter CEO’s @Jack account hacked [Update]
Stuff.co.nz – Stuff: Twitter CEO Jack Dorsey’s account sends racist tweets after hack
CNET News: Jack Dorsey’s Twitter account hacked – CNET
New York Times: Twitter C.E.O. Jack Dorsey’s Account Hacked
The A.V. Club: Someone hacked Jack Dorsey’s Twitter account to say even dumber stuff than usual
BuzzFeed – Tech: Jack Dorsey, The CEO Of Twitter, Was Hacked On Twitter
Sky News: Twitter founder’s account hacked as racist tweets posted
Mashable: Jack Dorsey’s Twitter account hacked to spread pro-Hitler message
TORONTO STAR: Twitter founder Jack Dorsey’s account hacked
Dark Reading: Attacks/Breaches: @jack Got Hacked — Twitter CEO’s Tweets Hijacked
USA Today: Twitter says it is investigating how CEO Jack Dorsey's account was compromised
Social Media Today : Hackers Gain Access to the Twitter Account of Platform CEO Jack Dorsey, Tweet Offensive Content
Vox: Jack Dorsey’s hack encapsulates Twitter’s struggle with problematic content
OneZero – Medium: Three Takeaways From the Hack of Jack Dorsey’s Twitter Account
FOX News: Twitter CEO Jack Dorsey’s own account was hacked, used to post vulgar messages
The Verge: Twitter CEO Jack Dorsey’s account has been hacked
VentureBeat: Twitter is investigating CEO Jack Dorsey’s account being hacked
Gizmodo: Jack Dorsey’s Twitter Account Was Hacked
Evening Standard: Twitter CEO Jack Dorsey's own Twitter account hijacked with series of racist tweets
Daring Fireball: Jack Dorsey’s Twitter Account Was Compromised
Windows Central : Jack Dorsey, Twitter’s CEO, had his account hacked
TechCrunch: A hacker has compromised Jack Dorsey’s Twitter account
Daily Dot: Twitter CEO’s account hacked, retweets pro-Nazi propaganda
Tech Insider: How to delete your Fitbit account and erase your personal data
CBSNews.com: Hackers tweet racial slurs from Twitter CEO Jack Dorsey’s account
Digital Trends: Twitter CEO Jack Dorsey’s account was hacked and used to tweet racist messages
Heavy.com: Jack Dorsey’s Twitter Account Hacked by ‘Chuckling Squad’
Quartz: Jack Dorsey’s Twitter account got hacked—here’s what we know
Neowin: Twitter CEO, Jack Dorsey, gets account taken over by hackers
Tech Insider: It took Twitter longer to secure Jack Dorsey’s account from hackers than it would for a nuclear missile to travel around the world — and that should terrify you
Daily Beast: Twitter CEO Jack Dorsey’s Account Gets Hacked, Posts Racist Messages
The Verge: Twitter CEO Jack Dorsey’s account has been hacked
CNN.com: Jack Dorsey’s Twitter account was hacked — and he’s the CEO of Twitter
Android Central : How to change your Twitter password and activate two-factor authentication
San Francisco Chronicle: Twitter CEO Dorsey’s account sent racist tweets after hack
SFist: Hackers Seize Jack Dorsey’s Twitter, Make Bomb Threats, Praise Hitler
Axios: Twitter CEO Jack Dorsey’s account hacked
Vox: Jack Dorsey’s hack encapsulates Twitter’s struggle with problematic content
MobileSyrup.com: Twitter CEO Jack Dorsey has been hacked
The Inquisitr News: Twitter CEO Jack Dorsey’s Account Was Hacked
CCN: Jack Dorsey Twitter Hack a Sick Way to Protest Hate Speech
AP Breaking News: Twitter CEO Dorsey’s account sent racist tweets after hack
iAfrikan: Jack Dorsey’s Twitter account hacked
TIME: Twitter CEO Jack Dorsey’s Twitter Account Has Been Hacked
iMore: Worried about getting your Twitter account hacked? Set up 2FA to protect it
Memeburn: Jack Dorsey’s Twitter account has been hacked, yet again
The Guardian: Jack Dorsey: Twitter CEO’s account hacked in embarrassing security lapse
Android Central : Jack Dorsey, Twitter’s CEO, had his account hacked
RT USA: Twitter CEO Jack Dorsey’s account ‘compromised,’ posted racial slurs
Boing Boing: How did Twitter CEO Jack Dorsey’s account get hacked?
Android Authority: Regularly changing your Twitter password is important, as Twitter CEO found out
Tech Insider: What we know about how Twitter CEO Jack Dorsey’s account was hacked, and the group called ‘Chuckling Squad’ who is claiming responsibility
The Register: JACK OF ALL TIRADES: Twitter boss loses account to cunning foul-mouthed pranksters
CNN.com: Jack Dorsey’s Twitter account was hacked — and he’s the CEO of Twitter
San Francisco Chronicle: Twitter CEO Dorsey’s account sent racist tweets after hack
Quartz: Hong Kong’s fast-learning, dexterous protesters are stumped by Twitter
Cybersecurity Insiders: Twitter Mobile Security flaw allows hackers to post Racist comments
SC Magazine: Twitter CEO’s account hacked in SIM-swapping scheme | SC Media
THE INQUIRER: Twitter CEO Jack Dorsey gets his Twitter account hacked
DataBreachToday.com: Hey Jack, How Was Your Account Hacked?
iTnews – Security: Twitter CEO’s hacked account sends racist tweets before being secured
PCMag.com: Twitter CEO’s Account Hacked, Defaced With Racist Posts
Haaretz.com: Twitter CEO Jack Dorsey’s account sends out pro-Nazi tweets after being hacked


August 29, 2019
Russell Brandom / The Verge

Russell Brandom / The Verge  
Facebook Acknowledges Flaw in Kids Messenger App That Allowed Thousands of Children to Chat With Strangers, Democratic Senators Say Facebook “Has to Do a Lot Better Than This”

Facebook acknowledged a flaw in its Messenger Kids app and said that it spoke to the U.S. Federal Trade Commission about the matter, according to an August 27th letter Facebook Vice President Kevin Martin wrote to Democratic Senators Ed Markey of Massachusetts and Richard Blumenthal of Connecticut. According to Martin, the technical error, which allowed thousands of children to join group chats in which not all members of the group were approved by their parents, arose in October 2018 and Facebook has now implemented a fix. In early August, Markey and Blumenthal questioned whether the company had violated the Children’s Online Privacy Protection Act (or COPPA) but Martin said he believes Facebook complies with COPPA.  The two Senators were disappointed with Martin’s response. “We are particularly disappointed that Facebook did not commit to undertaking a comprehensive review of Messenger Kids to identify additional bugs or privacy issues. If Facebook wants children and parents’ trust, it has to do a lot better than this.”

August 7, 2019
Cameron Faulkner / The Verge

Cameron Faulkner / The Verge  
SimpliSafe Home Security System Can Be Bypassed by $2 Generic Remote Control That Mimics Frequency of Contacts

SimpliSafe’s latest home security system can apparently be fooled by a $2 generic remote control that mimics the frequency of its door and window contact sensors according to a video posted by the LockPickingLawyer posted on YouTube. SimpliSafe’s sensors communicate with the base on the 433.92MHz frequency, which is very popular among other consumer electronics, like garage door openers, baby monitors, and more. Most of those electronics can’t interfere with the security system but the generic remote control can. The remote is powerful enough to override what the sensor is communicating and can be used to block the alarm process.

September 20, 2019
Zack Whittaker / TechCrunch

Zack Whittaker / TechCrunch  
Facebook Suspends Tens of Thousands of Apps From 400 Developers Under Suspicion They Are Collecting Large Amounts of User Profile Data

Facebook has suspended “tens of thousands” of apps built by 400 developers that were connected to its platform in a way in which Facebook suspects may have been collecting large amounts of user profile data. The apps were suspended for various reasons, such as siphoning off Facebook user profile data or making data public without protecting their identities, or other violations of the company’s policies. Facebook said it will continue investigating.

Related: Mashable, CNET, ZDNet Security, The Verge, Mercury News, Trusted Reviews, PYMNTS.com, POLITICO, AP Breaking News, Facebook Newsroom, Tech Insider, TechNadu, Fortune, The Guardian, The Verge, Boing Boing, TIME, LA Daily News, Law & Disorder – Ars Technica, Courthouse News Service, POLITICO, Axios, Security Affairs, RT News, Threatpost

Tweets:@kateconger @DamianCollins

Mashable : Facebook has suspended ‘tens of thousands’ of apps for policy violations
CNET: Facebook suspends tens of thousands of apps following Cambridge Analytica scandal
ZDNet Security: Facebook suspended tens of thousands of apps from 400 developers
The Verge: Facebook suspends ‘tens of thousands’ of apps from 400 developers over improper data use
Mercury News: Facebook says it has suspended ‘tens of thousands’ of apps
Trusted Reviews: Facebook suspends ‘tens of thousands’ of apps in shocking new privacy revelation
PYMNTS.com: Facebook App Investigation Leads To Thousands Of Suspensions
POLITICO: Facebook announces ‘tens of thousands’ of app suspensions
AP Breaking News: Facebook says it has suspended ‘tens of thousands’ of apps
Facebook Newsroom: An Update on Our App Developer Investigation
Tech Insider: Facebook says it suspended ‘tens of thousands’ of apps for misusing data as part of its investigation into the Cambridge Analytica scandal (FB)
TechNadu: Facebook Claims They Have Suspended Tens of Thousands of Apps Since 2018
Fortune: Facebook Review of Millions of Third-Party Apps Leads to Mass Suspension for Access to User DataFuture of Privacy Forum: FTC should investigate app developers banned by Facebook – Statement by Future of Privacy Forum CEO
The Guardian: Facebook suspends thousands of apps over privacy issues
The Verge: Facebook suspends ‘tens of thousands’ of apps from 400 developers over improper data use
Boing Boing: In Cambridge Analytica clean-up, Facebook says it killed ‘Tens of Thousands’ of apps
TIME: Facebook Says ‘Tens of Thousands’ of Apps Suspended Over Malware, Data Misuse Concerns
LA Daily News: Business briefly: Facebook says it has suspended ‘tens of thousands’ of apps
Law & Disorder – Ars Technica: Facebook suspends tens of thousands of apps in ongoing privacy investigation
Courthouse News Service: Facebook Suspends Tens of Thousands of Apps Over Data Privacy
POLITICO: Facebook CEO tries the quiet approach to soothing Washington
Axios: Facebook suspends “tens of thousands” of apps amid developer probe
Security Affairs: Two selfie Android adware apps with 1.5M+ downloads removed from Play Store
RT News: ‘Vital part of ecosystem’? Facebook blocks TENS OF THOUSANDS of apps hoarding your data & admits ‘won’t catch everything’
Threatpost : Facebook Removed Tens of Thousands of Apps Post-Cambridge Analytica

@kateconger: 69,000 apps suspended. 10,000 under deeper investigation. Facebook's data woes are about to get so, so much worse.
@DamianCollins: New data scandal brewing at Facebook could make Cambridge Analytica look like the tip of the iceberg. Again information being dragged out of a reluctant company whose only real privacy concern appears to be its own. Questions on who knew what and when, including Mark Zuckerberg


August 2, 2019
Nick Bastone / Business Insider

Nick Bastone / Business Insider  
Google Suspends All Language Reviews for Voice-Powered Assistant After German Regulatory Authority Launches Investigation

Google has temporarily halted all language reviews for its voice-powered Assistant around the world after a German regulatory authority announced it is pursuing an investigation into the matter. A Dutch media outlet last month revealed that Google used leaked audio snippets to show that some Google Assistant users had been recorded by their devices unknowingly. Johannes Caspar, Commissioner for Data Protection and Freedom of Information, said that the “use of speech assistance systems in the EU must comply with the data protection requirements of the GDPR (General Data Protection Regulation). In the case of the Google Assistant, there are currently considerable doubts about this.”

Related: Neowin, AP Breaking News, POLITICO EU, Tech Insider, The Verge, Hamburg Commissioner for Data Protection and Freedom of Information (PDF), The Register – Security, SlashGear, Android Central , Graham Cluley, TechCrunch, VentureBeat, The Verge


July 23, 2019
Russell Brandom / The Verge

Russell Brandom / The Verge  
Design Flaw in Facebook’s Messenger Kids App Allowed Children to Enter Group Chats With Unapproved Stranges

A  design flaw in Facebook’s Messenger Kids app, aimed at children under the age of thirteen allowed users to sidestep protection in the group chat system allowing children to enter group chats with unapproved strangers.  Facebook has been quietly closing down those group chats and alerting thousands of users but has not made any public statements disclosing the issue. The bug stemmed from the way Messenger Kids’ unique permissions were applied in group chats, letting anyone who launched a group chat to invite any user who was authorized to chat with them, even if that user wasn’t authorized to chat with the other children in the group.

Related: MashableGizmodo, PYMNTS.com, Tech Insider, Memeburn

Tweets:@k8em0