11 Jan 2021

High Court Rules Against Government Bulk Hacking

The High Court in the UK ruled against the intelligence agencies’ use of bulk hacking for domestic targets. Edward Snowden revealed the use of hacking to target large numbers of users simultaneously in 2014.  In 2016, the Non-profit Privacy International challenged the practice in a secretive court for cases involving

Read More
11 Jan 2021

New Zealand Central Bank Hit by Cyber Attack

On Sunday, New Zealand’s central bank was responding to a breach of one of its data systems. The third-party file accessed stored “sensitive information”. The Governor of the Reserve Bank of New Zealand, Adrian Orr, stated the breach was contained and the extent of the information accessed would take time

Read More
11 Jan 2021

Over 100,000 UN Employee Records Accessed by Researchers

Over 100,000 United Nations employee records and credentials were able to be accessed by security researchers in only hours. Sakura Samurai created a team to look for bugs to report to the UN under its vulnq disclosure program. Using the git-dumper tool, an exposed subdomain for UN program the International

Read More
06 Jan 2021

Telegram Triangulation Pinpoints Users’ Exact Locations

Telegram’s “people nearby” feature can be used to reveal a user’s precise location, according to bug-hunter Ahmed Hassan. The feature allows users of the secure messaging app to see who’s around them, however, it has been compromised by a severe security flaw. Hassan states that although you must enable the

Read More
30 Dec 2020

Misconfigured AWS Bucket Exposes Hundreds of Social Influencers

According to vpnMentor, a misconfigured amazon web services bucket has exposed the personal details of hundreds of social media influencers. This puts them at risk for fraud, harassment, and other safety threats. The AWS S3 bucket was left wide open with no encryption or password protection. VpnMentor found the site

Read More
16 Dec 2020

Apple’s App ‘Privacy Labels’ Are Here—and They’re a Big Step Forward

As of today, apps up for purchase in the Mac and iOS app stores will feature mandatory security labels that offer users a rundown of privacy policies. It’s Apple’s most bold and visible move yet to offer consumers more transparency and warn them about what data every app collects, and

Read More
20 Nov 2020

A Facebook Messenger Flaw Could Have Let Hackers Listen In

Facebook has been hosting a bug bounty program for roughly 10 years, which has provided the company with hundreds of bug reports before Facebook employees noticed any vulnerabilities. Recently, Facebook paid out $60,000 to an ethical hacker for reported a bug in Facebook Messenger that could have allowed an attacker

Read More
13 Nov 2020

The iOS Covid App Ecosystem Has Become a Privacy Minefield

Jonathan Albright, the director of Digital Forensics Initiative at the Tow Center for Digital Journalism, has released the product of his months-long analysis of 493 Covid-related iOS apps. The apps range from telehealth consultations to contact tracing, gathering sensitive user information in the process. 359 of those apps contained features

Read More
05 Nov 2020

California Votes to Strengthen Privacy Laws

During this election cycle, Californians have voted to increase their state’s privacy laws, allowing consumers to have more of a say in how their data is utilized by organizations and big tech companies. The law, proposition 24, won 56% of votes this fall as Californians flocked to the polls to

Read More
04 Nov 2020

Police launch pilot program to tap resident Ring camera live streams

A new pilot program will take place in Jackson, Mississippi, and allow law enforcement to utilize private surveillance devices as part of criminal investigations. The program’s trial will last 45 days and uses technology provided by IT consultancy firm Pileum and cloud-based video sensor producer Fusus. Up to five city-owned

Read More