Login
Strap yourself in, this is a big one! Big video, big breach (scrape?), and a big audience today. The Twitter incident consumed a heap of my time before, during and after this live stream, but then I go and get a sudden itch to do stuff like the number plate capturing and, well, there goes even more hours I don't have. But hey, I love what I do and I have no regrets, I hope you enjoy watching this week's vid π
Oh - one more thing: today I set up an official Mastodon account for HIBP. If you've got a footprint in the fediverse, please go and give the account a follow. There are a bunch of others out there that definitely aren't run by me, it's only this one, it only follows me personally and it has a verified website of haveibeenpwned.com so should be easy to find even if you don't follow the link above.
Rackspace has confirmed the Play ransomware gang was behind last month's hacking and said it won't bring back its hosted Microsoft Exchange email service, as it continues working to recover customers' email data lost in the December 2 ransomware attack.β¦
Updated More than 200 million Twitter users' information is now available for anyone to download for free.β¦
Why schools, hospitals, local governments and other public sector organizations are in a sweet spot for ransomware attacks
The post Ransomware target list β Week in security with Tony Anscombe appeared first on WeLiveSecurity
Updated Former Twitter security chief and whistleblower Peiter "Mudge" Zatko has landed his first official role since he left the company, a part-time job as "executive in residence" with cybersecurity firm Rapid7.β¦
An ex-General Electric engineer has been sentenced to two years in prison after being convicted of stealing the US giant's turbine technology for China.β¦
Updated Long-standing British newspaper The Guardian has told staff to continue working from home and notified the UK's data privacy watchdog about the security breach following a suspected ransomware attack before Christmas.β¦
It has a way of sneaking up on you. Credit theft and fraud.Β Β
Maybe itβs happened to you. Maybe itβs happened to a friend or family member. Thereβs a call from the bank, a notification in your financial app, or a charge on the statement thatβs beyond explanation. Someone else has tapped into your funds. Or worse yet, someone stole your identity and took out a loan in your name. You find out only after itβs happened.Β
Thatβs the trick with credit theft and fraud. People typically discover it after the damage is done. Then theyβre left picking up the pieces, which can cost both time and money. Not to mention a potential knock to their credit score.Β
However, you can help keep it from happening to you. Our recently published Credit Protection Security Guide breaks down several ways. Here weβll get into a quick introduction on the topic and show how you can prevent against credit theft and fraud better than ever before.Β
Itβs an unfortunate reality in the world we live in today. Credit theft and fraud are something we all need to look out for, particularly as we increasingly shop and conduct our finances online, potentially exposing that information to thieves. Some figures estimate that for nearly every $100 in purchases made with debit and credit cards worldwide, somewhere around 7 cents can be stolen or fraudulent. As you can imagine, that figure adds up quickly, to the tune of more than $28 billion globally each year.Β
The flipside is this: today we have plenty of tools that make protecting our credit far easier than they ever were before. Up until now, that called for a time-consuming and sometimes rather manual process. You had to check credit separately with the different bureaus, place locks and freezes the same way, scan each credit report closely for suspicious activity, and so forth.Β
Now, online protection software can take much of that work off your hands. Comprehensive protection like McAfee+ has plans that offer credit monitoring, identity monitoring, and even identity theft protection & restorationβall quickly spotting any changes, notifying you if your personal information pops up on the dark web, and providing $1 of coverage toward restoring your credit along with the help of a licensed recovery pro if the unexpected happens to you.Β
Another thing online protection can do for you removes your personal information from those βpeople finderβ and data broker sites. Identity thieves lean on those sites because they contain valuable information that they can piece together to commit theft and fraud in someone elseβs name. If you think about your identity as a big jigsaw puzzle, these sites contain valuable pieces that can help complete the pictureβor just enough to take a crack at your credit.Β
In fact, personal information fuels a global data trading economy estimated at $200 billion U.S. dollars a year. Run by data brokers that keep hundreds and even thousands of data points on billions of people, these sites gather, analyze, buy, and sell this information to other companies as well as to advertisers. Likewise, these data brokers may sell this information to bad actors, such as hackers, spammers, and identity thieves who would twist this information for their own purposes. In short, data brokers donβt discriminate. Theyβll sell personal information to anyone.Β
Getting your info removed from these sites can seem like a daunting task. (Where do I start, and just how many of these sites are out there?) Our Personal Data Cleanup can help by regularly scanning these high-risk data broker sites for you and info associated with you like your home address, date of birth, and names of relativesβalong with other detailed information about you that could include marriage licenses, voter registration and motor vehicle records, even real estate records too. It identifies which sites are selling your data, and depending on your plan, automatically requests removal.Β
How things have changed. Even as thieves have gotten savvier in the digital age, so have we. Collectively, we have a growing arsenal of ways that we can keep on top of our credit and protect ourselves from credit theft and fraud.Β Β
Our Credit Protection Security Guide breaks it all down in detail. In it, youβll learn more about how thieves work, ways you can secure your credit online and off, how to monitor and lock it down, plus protect your mobile wallets too. Itβs thorough. Yet youβll find how straightforward the solution is. A few changes in habits and a few extra protections at your side will go a long way toward preventionβhelping you avoid that call, text, or notification that your credit has been compromised.Β
In all, you can take control of your credit and make sure youβre the only one putting it to good use.Β
The post Your Guide to Protecting Your Credit appeared first on McAfee Blog.
Itβs been a particularly busy and colourful week, scam-wise in our household. Between 4 family members, weβve received almost 20 texts or emails that weβve identified as scams. And the range was vast: from poorly written emails offering βmust haveβ shopping deals to terse text messages reprimanding us for overdue tolls plus the classic βDear mum, Iβve smashed my phoneβ and everything in between.Β
Thereβs no doubt that scammers are dedicated opportunists who can pivot fast. They can pose as health authorities during a pandemic, charities after a flood or even your next big love on an online dating platform. And itβs this chameleon ability that means we need to always be on red alert!Β
According to the Australian Competition and Consumer Commission (ACCC), Aussies lost a record amount of more than $2 billion in scams in 2021. And that was with record levels of intervention from the government, law enforcement agencies and the private sector. The most lucrative scams were investment scams ($701 million) followed by payment redirection scams ($227 million) and then romance scams which netted a whopping $142 million.Β
But the psychological trauma that is often experienced by victims can be equally as devastating. Many individuals will require extensive counselling and support in order to move on from the emotional scarring from being a victim of hacking.Β
So, with scammers putting so much energy into trying to lure us into their web, how can we stay one step ahead of these online schemers and ensure we donβt become a victim?Β
While there are no guarantees in life, there are a few steps you can take so that you can quickly recognise an online scam.Β
If youβve received a text message, email or call that you think is a scam, donβt respond. Take your time. Slow down and pause. If itβs a call, and youβre not sure β hang up! Or if itβs a text or email β delete it! But if you are concerned that it might be legitimate, call the company directly using the contact information from their official website or through their secure apps.Β Β
If you are being asked to share your personal information or pay money either via a text or phone call, take some time to think. Does it feel legitimate? Do you have a relationship with this organisation? Remember, scammers are very talented at pretending they are from organisations you know and trust. If in doubt, contact the company directly via their official communication channels. Or ask a trusted friend or family member for their input. But remember, NEVER click on any links in messages from people or organisations you donβt know β no exceptions!!Β
Do not hesitate to take action if something feels wrong. If there are any transactions on your credit card or bank statements that donβt look right, call your bank immediately. If you think you may have given personal information to scammers, then act fast. I recommend calling ID Care β Australia and New Zealandβsβ―national identity and cyber support service. They are a not-for-profit charity that provides support to individuals affected by identity and cyber security issues.Β
ReportCyber is another way of notifying authorities of a scam. An initiative of the Australian Government and the Australian Cyber Security Centre, it helps authorities investigate and shut down scams. Itβs also a good idea to report the scam to Scamwatch β the dedicated scam arm of the Australian Competition and Consumer Commission (ACCC).Β
Weβve all heard that βprevention is better than a cureβ so taking some time to protect yourself before a scammer comes your way is a no-brainer. Here are my top 5 things to do:Β
Please donβt think smart people donβt get caught up in scams because they do!! Scammers are very adept at looking legitimate and creating a sense of urgency. With many of us living busy lives and not taking the time to think critically, itβs inevitable that some of us will become victims. And remember if youβre offered a deal that just seems too good to be true, then itβs likely a scam! Hang up or press delete!!Β
The post How To Recognize An Online Scam appeared first on McAfee Blog.
Updated A legal saga between Meta, Ireland and the European Union has reached a conclusion β at least for now β that forces the social media giant to remove data consent requirements from its terms of service in favor of explicit consent, and subjects it to a few hundred million more euros in fines for the trouble.Β β¦
An unknown attacker used the PyPI code repository to get developers to download a compromised PyTorch dependency that included malicious code designed to steal system data.β¦
Are your virtual doctor visits private and secure? Hereβs what to know about, and how to prepare for, connecting with a doctor from the comfort of your home.
The post The doctor will see you now β¦ virtually: Tips for a safe telehealth visit appeared first on WeLiveSecurity
Notorious ransomware gang LockBit "formally apologized" for an extortion attack against Canada's largest children's hospital that the criminals blamed on a now-blocked affiliate group, and said it published a free decryptor for the victim to recover the files.β¦
An anti-government protest by truckers in Canada has been called off following "multiple security breaches," according to organizers, who also cited "personal character attacks,"Β as a reason for the withdrawal.β¦
Google has settled two more of the many location tracking lawsuits it had been facing over the past year, and this time the search giant is getting an even better deal: just $29.5 million to resolve complaints filed in Indiana and Washington DC with no admission of wrongdoing.β¦
With many children spending a little too much time playing video games, learn to spot the signs that things may be spinning out of control
The post Gaming: How much is too much for our children? appeared first on WeLiveSecurity
Pledging to follow healthier habits is consistently the most popular new yearβs resolution. That January 1st promise looks different to everyone: snacking less often, going to the gym more often, drinking more water, drinking less soda, etc. This year, instead of a juice cleanse subscription, opt for a healthier habit thatβs not an unappetizing shade of green: follow this digital detox, instead! In three easy steps, you can make great strides in improving your digital wellness.Β
There are various aspects of your digital habits that you should consider updating for a more private and safer online life. For starters, update your passwords. Do you reuse the same password for multiple online accounts? Doing so puts your personally identifiable information (PII) at great risk. For example, if a business with which you have an online shopping account is breached by a cybercriminal, your login and password combination could make it on the dark web, through no fault of your own. Then, through a brute force attack, a criminal could use that same password and username combo to walk into your banking or tax filing accounts.Β Β Β
Remembering unique, complicated passwords and passphrases for your dozens of online accounts would be impossible. Luckily, thereβs software that remembers them for you! Itβs called a password manager, which acts as a vault for all your login information. Just remember one master password, and you can be confident in the security of your accounts and never have to deal with the hassle of forgetting passwords.Β
Another aspect of updating you should adopt in 2023 is making an effort to always upgrade to the latest software updates on all your devices. The easiest way to do this is to turn on automatic updates. From there, you donβt need to take any further action! Apps and operating systems (like Apple, Android, and Windows) often release updates to patch security vulnerabilities. When you run outdated software, thereβs a chance a cybercriminal could take advantage of that security gap.Β
Finally, make sure that you keep updated on the latest security headlines. Consider setting up news alerts to notify you when a breach occurs at a company that you frequent or have an account with. Speed is often key in making sure that your information remains safe, so itβs best practice to have your finger on theΒ pulse on the security news of the day.Β
A new year digital detox can be a whole family affair. Connect with your family, anyone connected to your home network, and your elderly relatives to get everyone on the same page with security best practices. Here are some common online security snags people of all ages encounter:Β
Everyone has an oversharer on their newsfeed. Alert your family members of the dangers of posting too much about their personal life. When someone takes those βget to know youβ quizzes and posts their answers, cybercriminals can use that post to take educated guesses at your passwords. Additionally, social engineers can tailor social media scams to specific people in order to increase the chances of tricking someone into sending money or sharing valuable personal or banking details.Β
While spam filters catch a lot of phishing emails, phishers are getting smarter by the day and are making their attempts more and more believable. Connect with your loved ones and make sure they know how to recognize phishing emails, texts, and social media direct messages. Telltale signs of a phishing message include:Β Β
If youβre ever unsure if a message is a phishing attempt, the best course of action is to just delete it. If the βsenderβ is a well-known institution, follow up with a phone call using the official customer service number listed on their website. The phisher may also claim to be someone you know personally. In that case, give the loved one in question a phone call. Itβs a good excuse to reconnect and have a nice conversation!Β
In the quest for free streams of the latest new show or movie, people often encounter unsafe sites that hide malware, spyware or other types malicious links and programs. Some types of malware can jump from one device to others connected to the same home Wi-Fi network. Thatβs why itβs important to make sure everyone under your roof practices excellent digital security habits. One wrong click could sink an entire household. Consider signing up your family for a safe browsing extension that can notify you when you stray onto a risky site. So, instead of putting your device at risk during movie night, connect with your friends or loved ones over one copy of a safely and officially purchased version.Β
As with any new health regimen, immediately zooming from zero to a hundred will likely be overwhelming and result in failure. The same goes for adopting new digital safety habits. If you try to do too much at once, all the security measures you put in place will likely get in the way of your daily online activities. The more inconvenient it is, the more likely you may be to cut corners; thus, negating all the progress youβve made.Β
Being cybersafe doesnβt mean you canβt still enjoy your connected devices to the fullest. It just means that you may need to act with more intention and slow down before volunteering personal details online or clicking on links.Β Β
To supplement your digital detox, consider signing up for McAfee+ Ultimate to make 2023 the year for a safer online you. McAfee+ Ultimate includes all the tools you need to live your best online life safely and privately, including a password manager, web protection, unlimited VPN and antivirus, and $1 million in identity theft coverage and restoration for peace of mind.Β
Cheers to a digitally smart 2023!Β
The post Start the New Year Right With This 3-Step Digital Detox appeared first on McAfee Blog.
Do you use any of these extremely popular β and eminently hackable β passwords? If so, we have a New Yearβs resolution for you.
The post The worldβs most common passwords: What to do if yours is on the list appeared first on WeLiveSecurity
FreshRSS 