Sophos – Page 126 – PossibleThreat Articles

Credit to Author: Alice Duckett| Date: Thu, 30 Jan 2020 17:14:09 +0000

New episode available now.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/egQbHH_Ja98″ height=”1″ width=”1″ alt=””/>

Security Sophos

Trello exposed! Search turns up huge trove of private data

January 30, 2020 0 Comments craig jones, data breach, data loss, exposed data, gmail passwords, Privacy, public boards, public data, security threats, shadow it, trello

Credit to Author: John E Dunn| Date: Thu, 30 Jan 2020 17:07:16 +0000

A surprising number of users seem to be setting Trello boards, and their often highly sensitive content, to ‘public’.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/xSnZVFqX8_4″ height=”1″ width=”1″ alt=””/>

Security Sophos

Facebook knows a lot about your online habits – here’s how to stop it

January 30, 2020 0 Comments facebook, off facebook activity, online tracking, Privacy, privacy controls, site tracker, social media, Social networks

Credit to Author: Danny Bradbury| Date: Thu, 30 Jan 2020 16:12:34 +0000

Facebook’s new Off-Facebook Activity feature is part of the company’s effort to appear more privacy-friendly to its users.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/sYdMXSoeSaM” height=”1″ width=”1″ alt=””/>

Security Sophos

Employers can’t force you to get microchipped, Indiana reps say

January 30, 2020 0 Comments bill, employee access, employee surveillance, employees, employers, house bill 1143, indiana, Law & order, legislation, microchip, microchipping, microchips, Privacy, surveillance, Tracking

Credit to Author: Lisa Vaas| Date: Thu, 30 Jan 2020 13:21:47 +0000

The US state wants to make sure employers don’t “overstep their bounds” by imposing mandatory employee microchipping.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/48XlhRwADKc” height=”1″ width=”1″ alt=””/>

Security Sophos

Government spyware company spied on hundreds of innocent people

January 30, 2020 0 Comments ‘ndrangheta, Android, black team, data loss, employee surveillance, employees, esurv, fraud, Government security, Law & order, malware, Mobile, Privacy, salvatore ansani, security threats, unauthorized access, virus scans

Credit to Author: Lisa Vaas| Date: Thu, 30 Jan 2020 11:30:55 +0000

eSurv execs have been charged with fraud, unauthorized access to a computer system, illicit interception and illicit data processing.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/08noJbBMayg” height=”1″ width=”1″ alt=””/>

Security Sophos

Apple patches critical bugs on iPhone and Mac – update now!

January 29, 2020 0 Comments Apple, iOS, MacOS, OS X, Patch, rce, vulnerability

Credit to Author: Paul Ducklin| Date: Wed, 29 Jan 2020 17:39:26 +0000

Get them now before the crooks figure out what to do with the holes.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/Z9hUCBoA6tw” height=”1″ width=”1″ alt=””/>

Security Sophos

Intel promises fix after researchers reveal ‘CacheOut’ CPU flaws

January 29, 2020 0 Comments bwain, cacheout, Intel chips, meltdown, security threats, side channel vulnerability, spectre, zombieload

Credit to Author: John E Dunn| Date: Wed, 29 Jan 2020 15:11:17 +0000

Forget the infamous Meltdown and Spectre chip flaws from 2018, the problem that’s tying down Intel’s patching team these days is a more recent class of side channel vulnerabilities known collectively as ZombieLoad.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/9wzLWKs_aWI” height=”1″ width=”1″ alt=””/>

Security Sophos

Anatomy of a “free” gift – how online surveys can harm your digital health

January 29, 2020 0 Comments PII, Privacy, surveys

Credit to Author: Paul Ducklin| Date: Wed, 29 Jan 2020 14:52:25 +0000

Just how much will that £1000 “free” gift card cost? We took a look so you don’t have to…<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/xTic4Md05yA” height=”1″ width=”1″ alt=””/>

Security Sophos

Let’s make ransomware MORE illegal, says Maryland

January 29, 2020 0 Comments bill, bug disclosure, data loss, disclosure, katie moussouris, Law & order, legislation, malware, maryland, prosecution, Ransomware, researchers, responsible disclosure, security threats, vulnerability disclosure

Credit to Author: Lisa Vaas| Date: Wed, 29 Jan 2020 12:53:54 +0000

… with a clumsily worded proposed bill that wouldn’t protect researchers.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/d9HY01sLptw” height=”1″ width=”1″ alt=””/>

Security Sophos

Fraud spike prompts Chrome developer lock-out

January 29, 2020 0 Comments browser extension, chrome, chrome developers, Chrome Extension, chrome web store, chromium, Google, Google Chrome, Web Browsers

Credit to Author: Danny Bradbury| Date: Wed, 29 Jan 2020 12:17:56 +0000

Google Chrome extension developers have been left high and dry for weeks as the company struggles to cope with a spike in fraud on the Chrome Web Store.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/LoRzNY2ZY7s” height=”1″ width=”1″ alt=””/>