Collaborate Disseminate
Researchers have brought to light a new attack method – dubbed TunnelVision and uniquely identified as CVE-2024-3661 – that can be used to intercept and snoop on VPN users’ traffic by attackers who are on the same local network. ̶… Continue reading Attackers may be using TunnelVision to snoop on users’ VPN traffic (CVE-2024-3661)
In this Help Net Security video, Brad Hibbert, Chief Strategy Officer and Chief Operating Officer for Prevalent, discusses five interesting findings from a recent industry study on third-party risk management and what he thinks they mean for cybersecur… Continue reading The complexities of third-party risk management
By Deeba Ahmed
Over 1.2 million records were exposed in a major data breach at UK security firm Amberstone. Learn the potential impact, what to do if affected, and how to stay secure.
This is a post from HackRead.com Read the original post: Major UK S… Continue reading Major UK Security Provider Leaks Trove of Guard and Suspect Data
By Deeba Ahmed
A massive data leak of 820,000 Dominicans’ personal information (including COVID vaccination status) has been leaked online puting individuals at risk of identity theft, scams, and social engineering attacks.
This is a post from HackRead… Continue reading Hackers Leak COVID-19 Data of 820K Dominicans, Including Vaccination Info
Proton today announced that it is adding a suite of online account security protections to its Proton Pass password manager, some of which are included in the free tier.
The post Proton Adds Account Monitoring to its Password Manager appeared first on… Continue reading Proton Adds Account Monitoring to its Password Manager
Wednesday Rest of World noticed an overlooked tech story in Argentina:
Olga de León looked confused as she walked out of a nightclub on the edge of Buenos Aires on a recent Tuesday afternoon. She had just had her iris scanned. “No one told me w… Continue reading In Argentina, Facing Surging Inflation, 500K Accept Worldcoin’s Offer of $50 for Iris-Scanning
Data Subject Requests (DSRs) — formal requests made to a company by a person to access, delete, or request not to sell/share the personal data that the company holds on them — increased by 32% from 2022 to 2023, according to DataGrail’s 2024 Privacy Tr… Continue reading Privacy requests increased 246% in two years
Markos Moulitsas is the poll-watching founder of the political blog Daily Kos. Thursday he wrote that in 2021, future third-party presidential candidate RFK Jr. had sued their web site.
“Things are not going well for him.”
Back in 2021, Robert F. Ke… Continue reading When a Politician Sues a Blog to Unmask Its Anonymous Commenter
samleecole writes: Utah set up an online form for people to accuse other citizens and public establishments of violating the state’s recently-enacted transphobic “bathroom bill.” The submission form is being flooded with memes and troll comments, and t… Continue reading An Open Database Leaked Submissions To Utah’s ‘Bathroom Bill’ Snitch Form
The UK Government takes aim at IoT devices shipping with weak or default passwords, an identity thief spends two years in jail after being mistaken for the person who stole his name, and are you au fait with the latest scams?
All this and much more … Continue reading Smashing Security podcast #370: The closed loop conundrum, default passwords, and Baby Reindeer