“Florida Virtual School (FLVS) recently learned of a potential data security incident involving certain information provided to us by students and parents. We are providing this notice as a precaution to inform potentially affected individuals about the incident and to call your attention to some steps you can take to help protect yourself. We sincerely regret any concern this may cause you.” Florida Virtual School was hacked two years, but they only “learned” about the hack this week. Read more “Florida Virtual School was hacked 2 years ago”
The technology industry and financial industry aren’t seeing eye to eye on the new security protocol TLS 1.3. The most recent implementation that is deployed is TLS 1.2 that was released in 2008, so an update to the TLS specification is due for an update.
TLS stands for Transport Layer Security and encrypts the data that is transferred between you and whichever web server you have requested a website from and is used for virtual private networks so that remote workers can access company data securely. Read more “Banks are trying to weaken a new security protocol”
Another unsecured storage bucket has been discovered by the UpGuard Cyber Risk Team that exposed 50.4 gigabytes of sensitive data from Capital One. The discovery was made on January 15th, 2018 at the “capitalone-appliance” subdomain and was configured to allow public access.
FISA Section 702 authorizes the NSA to collect foreign communications outside of the US to include terrorist threats. There are some problems with this section to include, but not limited to, abuse. Few safeguards are in place to protect US citizens that are often caught up in foreign NSA surveillance with most of the safeguards being administrative and unenforced. Read more “FISA Section 702 re-authorization”
HP has been caught leaving a keylogger in a driver for the second time this year. The keylogger is in the keyboard driver SynTP.sys and is disabled by default. The explanation is that the keylogger is left over from when the software developers debug the program they’re developing.
Recently there has been a massive data breach that exposed millions of people. Upon installing the Ai.Type keyboard the application requested full access to your phone which recorded every letter or number you typed. Why would a keyboard and emoji application need to gather the entire data of the user’s phone or tablet? Great question. Read more “Keyboard Maker AI.Type Latest Data Breach”
If you thought that by turning off location services on your Android phone meant that your location wasn’t reporting to any application, you have been lulled into a false sense of security (locationlessness?). Google has been collecting location data from cell towers that the phone connects to, and there isn’t a notification of this activity, so the user is left unaware. Read more “Google Is Location Snooping In Android”
Freedom House covers issues of human rights, civil society, freedom of expression, internet freedom, the rule of law, elections, religious freedom, and LGBTI rights around the world. They recently published their Freedom On The Net 2017 report that discusses government efforts to manipulate information on social media. Read more “The State of Internet Freedom Around The World”