HackDig : Dig high-quality web security articles for hacker

Yodel parcel tracking app blabs about other people’s parcels

byLisa Vaas“Fragile?” “Handle with care?”“Meh! Looks like a football to me,” workers for the UK parcel delivery company Yodel must have said around the time – 2016 – they were caught on video, apparently tossing packages around.Have they grown more tender? Dunno, but FWIW, a year after the football exposé, they made it to the top of the country&#
Publish At:2019-12-05 12:35 | Read:162 | Comments:0 | Tags:Android Mobile Privacy Ax Sharma courier delivery leak packa

DHS May Require US Citizens Be Photographed at Airports

Federal officials are considering requiring that all travelers — including American citizens — be photographed as they enter or leave the country as part of an identification system using facial-recognition technology.The Department of Homeland Security says it expects to publish a proposed rule next July. Officials did not respond to requests for more detai
Publish At:2019-12-04 12:01 | Read:194 | Comments:0 | Tags:NEWS & INDUSTRY Privacy Compliance Tracking & Law En

TikTok Sued in US Over Alleged China Data Transfer

A university student in California has filed a class-action lawsuit against video app TikTok, which she accuses of harvesting large amounts of user data and storing it in China."TikTok clandestinely has vacuumed up and transferred to servers in China vast quantities of private and personally-identifiable user data," the court filing said.Misty Hong, a studen
Publish At:2019-12-04 10:15 | Read:180 | Comments:0 | Tags:NEWS & INDUSTRY Privacy Compliance Data Protection Priva

APT review: what the world’s threat actors got up to in 2019

What were the most interesting developments in terms of APT activity during the year and what can we learn from them? This is not an easy question to answer, because researchers have only partial visibility and it´s impossible to fully understand the motivation for some attacks or the developments behind them. However, let´s try to approach the problem from
Publish At:2019-12-04 06:05 | Read:180 | Comments:0 | Tags:Featured Kaspersky Security Bulletin APT Mobile Malware Priv

EU to Check How Facebook, Google Use Data: Spokeswoman

The European Commission said Monday it had begun a "preliminary investigation" into how Facebook and Google collect personal data and what they do with it."The Commission has sent out questionnaires as part of a preliminary investigation into Google’s and Facebook’s data practices," a Commission spokeswoman told AFP."These investigations concern the way data
Publish At:2019-12-03 10:15 | Read:228 | Comments:0 | Tags:NEWS & INDUSTRY Privacy Audits Compliance Data Protectio

Twitter Promises Increased Transparency With New Privacy Center

Twitter this week announced the launch of a privacy center whose goal is to provide increased transparency on how the social platform handles user information.The new Twitter Privacy Center will provide details on all of the initiatives Twitter has tailored toward privacy and data protection, as well as related announcements, new privacy products, and securi
Publish At:2019-12-03 10:15 | Read:289 | Comments:0 | Tags:NEWS & INDUSTRY Privacy Compliance Privacy & Complia

5G technology predictions 2020

Kaspersky Security Bulletin 2019. Advanced threat predictions for 2020 Cybersecurity of connected healthcare 2020: Overview and predictions Corporate security prediction 2020 Cyberthreats to financial institutions 2020: Overview and predictions It is estimated that data will reach 175 zettabytes worldwide by 2025, up from 1.2 zettabytes in 2010, when 4G wa
Publish At:2019-12-03 06:05 | Read:247 | Comments:0 | Tags:Kaspersky Security Bulletin Internet of Things Mobile securi

Twitter, Facebook User Data Improperly Accessed via Malicious SDKs

Twitter and Facebook this week took action against malicious mobile software development kits (SDKs) that were used to improperly access user data.Both companies have confirmed that, upon receiving reports of the malicious tools, they conducted their own investigations and concluded that the SDKs were indeed malicious. Users who downloaded and installed appl
Publish At:2019-11-30 10:15 | Read:254 | Comments:0 | Tags:Mobile Security NEWS & INDUSTRY Privacy Data Protection

Bytedance: The Chinese Company Behind Global TikTok Craze

TikTok's Owner ByteDance Could be Forced to Share User Information With Chinese IntelligenceThe Chinese billionaire behind teen phenomenon TikTok is a 36-year-old tech guru whose eye for youth trends and pioneering use of AI has blasted the app to global success -- while working hand-in-glove with censors to control content within China.Zhang Yiming's Beijin
Publish At:2019-11-30 10:15 | Read:173 | Comments:0 | Tags:NEWS & INDUSTRY Privacy

Would ‘Medicare for All’ help secure health data?

DISCLAIMER: This post is not partisan, but rather focuses on risk assessment based on history and what threats we are facing in the future. We do not endorse any healthcare plan style in any way, outside of examining its data security risk. For many folks, the term ‘Healthcare for All’ brings up an array of emotions ranging from concern to happiness, and
Publish At:2019-11-26 21:50 | Read:316 | Comments:0 | Tags:Government Privacy Security world adam kujawa AMCA American

Sir Tim Berners-Lee publishes plan to save the web from ‘digital dystopia’

byJohn E DunnWeb inventor Sir Tim Berners-Lee is so worried his 30-year-old creation is turning into a “digital dystopia” that he’s proposed a Contract for the Web to rescue it from a headlong plunge into a moral abyss.It’s not an original worry – Berners-Lee has publicly fretted about the web’s direction many times in recent years – and it’s not
Publish At:2019-11-26 12:35 | Read:329 | Comments:0 | Tags:Facebook Google Microsoft Privacy Twitter Contract for the W

Court says suspect can’t be forced to reveal 64-character password

byLisa VaasThe dry facts: A US court has come down in favor of Fifth Amendment protections against forced disclosure of a 64-character passcode in a child abuse imagery case = an important interpretation of whether forced password disclosure is the modern equivalent of an unconstitutionally coerced confession.The gut punch: The defendant is a man previously
Publish At:2019-11-26 12:35 | Read:247 | Comments:0 | Tags:Cryptography Law & order Mobile Privacy child abuse child ab

Parents say creep hacked their baby monitor to tell toddler they ‘love’ her

byLisa VaasAnother mouthbreather with nothing better to do than hack a baby monitor and broadcast their “love” for a 3-year-old has apparently struck again.This time, it happened to a family in Seattle.According to local broadcaster King 5, a couple who asked to be identified only as Jo and John said that their daughter, Jaden, was spied on by a stranger who
Publish At:2019-11-26 12:35 | Read:145 | Comments:0 | Tags:IoT Privacy Security threats baby monitor baby monitors FRED

“Data as property” promises fix for privacy problems, but could deepen inequality

In mid-November, Democratic presidential hopeful Andrew Yang unveiled a four-prong policy approach to solving some of today’s thornier tech issues, such as widespread misinformation, technology dependence, and data privacy. Americans, Yang proposed, should receive certain, guaranteed protections for how their data is collected, shared, and sold—and if they c
Publish At:2019-11-25 16:50 | Read:227 | Comments:0 | Tags:Privacy Andrew Yang Dashboard Act data as property data as p

Data on 1.2 Billion Users Found in Exposed Elasticsearch Server

An exposed Elasticsearch server was found to contain data on more than 1.2 billion people, Data Viper security researchers report.The server was accessible without authentication and it contained 4 billion user accounts, spanning more than 4 terabytes of data, security researchers Bob Diachenko and Vinny Troia discovered last month.Analysis of the data revea
Publish At:2019-11-25 10:15 | Read:184 | Comments:0 | Tags:NEWS & INDUSTRY Privacy Privacy & Compliance


Share high-quality web security related articles with you:)


Tag Cloud