CYBER: Privacy, Crime, & Security

By Michael Hartley CFP® | Dkeadvisorsolutions.com curated articles about data and Internet security and personal privacy related to technology use.

This 'ticket trick' could see hackers gain unauthorized access to Slack teams by exploiting issue trackers

Let’s imagine you’re the CEO of a major corporation. On a scale from one-to-ten, tell me how disastrous you think it would be if an adversary – like a hacker, or a rival company – was able to eavesdrop on <i>every</i> conversation taking place in your headquarters. Ten, right?<p>It’s a nightmare scenario, but …

Security

London Costcutter trials finger-vein readers for faster payments

The humble Costcutter supermarket at Brunel University in London has recently become home to a biometric payment system that allows customers to check out with a tap of their finger. The store's owner has begun trialling Sthaler's Fingopay system, which authenticates people by looking at the 3D …

Banking

Experian allows users to undo a credit freeze just by knowing a handful of breachable facts

Experian's online PIN-recovery system could let attackers undo a credit freeze just by figuring a few easy facts. In the weeks following the Equifax breach, consumers have been told to freeze their credit, thereby blocking possible attackers from opening new lines of credit under their names. It …

Identity Theft

How a Tiny $50 Gadget Is Thwarting Hackers in 160 Countries

A Swedish product designer built the go-to cybersecurity device for companies in Silicon Valley--and across the globe.<p>When Stina Ehrensvard opened an account with an online bank and was issued a user name, password, and complex security software to be installed on her computer, what the bank didn't …

Security

Cybercriminals are feeding off of America's small businesses, new study shows

Businesses paid hundreds of millions of dollars to hackers last year, a new report shows.<p>A study released by data security solutions firm Datto, found that small-to-mid-sized businesses paid $301 million in ransomware – or malicious software that blocks access to a system until a ransom is paid – …

Cybersecurity

SEC discloses cybersecurity breach

The Securities and Exchange Commission on Wednesday said its “EDGAR” public-company filing system had been hacked.<p>SEC Chairman Jay Clayton said in a statement that last month "the Commission learned that an incident previously detected in 2016 may have provided the basis for illicit gain through …

Cybersecurity

Hackers know humans are 'weakest links': Mimecast CEO

Jim Cramer sat down with Peter Bauer, the head of cybersecurity firm Mimecast, for more on the state of the industry after the Equifax hack.

Cybersecurity

Google security chief says 'I delete all the love letters from my husband' because of hackers

This is the saddest — and also the most sensible — piece of IT security advice you will ever hear: Heather Adkins, director of information privacy and security at Google, who built Google's security team over the last 10 years, told a conference on Monday, "I delete all the love letters from my …

Security

Someone finally made an app to detect credit card skimmers at the gas pump

In less than 30 seconds a hacker can install a $10 piece of pre-built hardware – easily purchased online – into a gas pump. This device is called a skimmer and it’s designed to get your credit card number when you use it at the pump.<p>A clever developer came up with a somewhat simple approach to …

Identity Theft

New ransomware attack sweeping around the world

In the past 24 hours there have been 20 million attempted ransomware attacks, according to analysis from Barracuda Networks. Most of the attacks have …

Ransomware

Cryptocurrencies May Be a Dream Come True for Cyber-Extortionists

<i>This piece originally appeared on The Conversation.</i><p>When malicious software takes over computers around the world, encrypts their data and demands a …

Cybersecurity

Hackers compromised CCleaner free software, Avast's Piriform says

SAN FRANCISCO (Reuters) - Hackers broke into British company Piriform's free software for optimizing computer performance last month and installed tools that could have allowed them to take control of tens of millions of devices, the company and independent researchers said on Monday.<p>The malicious …

Information Security

California shelves law barring internet providers from sharing data

If you were hoping a state legislature would effectively override the federal bill rolling back internet privacy rules, you'll have to keep waiting. California's legislature has ended its session without voting on a bill that would have prevented internet providers from collecting and selling data …

Privacy

Here’s What You Can Do About That Equifax Data Breach

The Equifax security breach may have exposed private information belonging to almost half the U.S. population, so you should definitely pay attention.<p>Credit reporting agencies work differently from other data companies, so while you may never have dealt with Equifax, their servers were still likely …

Identity Theft

Finally, Some Answers From Equifax to Your Data Breach Questions

In the last few days, several hundred of you have sent me questions or tweeted about the Equifax breach and its credit freeze process. I don’t blame you, given that you’ve melted their websites and phone banks since the company announced last week that up to 143 million people may have had their …

Data Breach

How to stop another Equifax-style exposure of personal data

Imagine a chemical company accidentally disperses toxic gas over a neighborhood. Instead of telling residents right away, the company waits six …

Denver

Pirate Bay 'borrows' visitor CPUs to mine virtual coins

Piracy websites can't really depend on ads, so how do they make money? By using your PC's processor cycles, apparently -- whether you want to or not. Visitors to The Pirate Bay have discovered JavaScript code in the website that 'borrows' your processor for the sake of mining Monero digital coins. …

Internet

ISPs can keep sharing your browsing history after California no-vote | Ars Technica

Lawmakers fail to vote on opt-in rule that would protect your browsing history.<p>California state lawmakers ended their legislative session yesterday …

Privacy

Equifax data breach poses massive threat to retail accounts

The Equifax hack is threatening to create a massive holiday headache for shoppers and retailers alike.<p>The trove of personal data from 143 million …

Identity Theft

North Korean hackers are trying to steal bitcoin and other cryptocurrencies

It’s no secret that in recent years, North Korea has stepped up efforts to expand its nuclear weapons stockpile.<p>More quietly, though, it’s been stashing another commodity: bitcoin and other cryptocurrencies.<p>According to a report by the security firm FireEye Inc., North Korean hackers have been …

Security

Banks in the United Arab Emirates Are Sharing Data to Fight Hackers

Local and international banks in the United Arab Emirates are sharing information in an effort to reduce cyber attacks.<p>Gulf banks have invested …

Cybersecurity

This cyber security expert predicts a top global bank will suffer an Equifax scale hack

A leading global bank will suffer a hack of the size and severity experienced by Equifax at some point, the founder of the most highly valued …

Cybersecurity

Massive Android Malware Outbreak Invades Google Play Store

Security researchers claim to have discovered one of the biggest outbreaks of Android malware ever to sneak its way from the Google Play Store onto …

Google

Equifax blames breach on a server flaw it should've patched

Equifax's latest update on its unprecedented security breach notifies the public that its investigation has found the cause of the theft. Along with an unnamed security firm (<i>ZDNet</i> and others have reported it's Mandiant) the company confirmed rumors that attackers exploited a flaw in the Apache …

Security

If you value your privacy, be careful with online translation tools

Say you need a quick document translation. You choose an online tool, pick the language you want, copy your text, drop the text in, and presto! In moments you can read a version in your desired tongue. Great, right?<p>It is great, but be careful not to make the same mistake made by Statoil, Norway’s …

Privacy

Cops Could Force Open Your iPhone X Using FaceID, ACLU Warns

Civil-rights group warns that cops will likely be able to force you to unlock your $999 phone and expose all of your secrets unless you switch off FaceID.<p>The only way to be certain cops won’t receive instant access to everything on your new iPhone X is to turn off its flashiest new feature, …

Privacy

Equifax Website Secured By The Worst Username And Password Possible

The Equifax breach that leaked data on 143 million Americans and Canadians was about as disastrous as they come. As Forbes’ Thomas Fox-Brewster pointed out last week, it wasn’t an isolated incident. Equifax has had problems with security before.<p>And now there’s another incident to add to that list. …

Security

New Bluetooth vulnerability can hack a phone in ten seconds

Security company Armis has found a collection of eight exploits, collectively called Blueborne, that can allow an attacker access to your phone without touching it. The attack can allow access to both computers and phones as well as IoT devices.<p>“Armis believes many more vulnerabilities await …

Information Security

N. Korean Hackers Step Up Bitcoin Attacks

North Korea appears to be stepping up efforts to secure bitcoin and other cryptocurrencies, which could be used to avoid trade restrictions including …

North Korea