Last week on Malwarebytes Labs: AI is getting “creepy good” at geo-guessing Zoom attack tricks victims into allowing remote access to install malware and steal money Android malware turns phones into malicious tap-to-pay machines 4.7 million customers’ data accidentally leaked to Google by Blue Shield of California Shopify faces privacy lawsuit for collecting customer data […]
A week in security (April 21 – April 27) Leggi tutto »
If you are worried about revealing your exact location—or if you maybe even fib about it at times—there are some good reasons to worry about what is visible in background photos, because Artificial Intelligence (AI) is getting very good at guessing where you are based on the smallest of clues. And that might even include
AI is getting “creepy good” at geo-guessing Leggi tutto »
Be careful when talking to people you’ve not met with before over the Zoom video conferencing system; you might get more than you bargained for. Two CEOs were recently targeted by a Zoom-based attack. One spotted it in time – and sadly, one did not. The attack is by a crime group that the Security
Got an Android phone? Got a tap-to-pay card? Then you’re like millions of other users now at risk from a new form of cybercrime – malware that can read your credit or debit card and hand its data over to an attacker. A newly discovered malicious program effectively turns Android phones into malicious tap machines
Android malware turns phones into malicious tap-to-pay machines Leggi tutto »
Blue Shield of California leaked the personal data of 4.7 million people to Google after a Google Analytics misconfiguration. The tech giant may have used this data for targeted advertising, according to Blue Shield, which is one of the largest health insurers in the US. In a data breach notice on its website, Blue Shield
4.7 million customers’ data accidentally leaked to Google by Blue Shield of California Leggi tutto »
Shopify faces a data privacy class action lawsuit in the US that could change the way globally active companies can be held accountable. The proposed class action is a revival of a case that had been dismissed by a lower court judge and a three-judge 9th Circuit Court of Appeals panel. But now it’s been
Shopify faces privacy lawsuit for collecting customer data Leggi tutto »
Cybercriminals are abusing Google’s infrastructure, creating emails that appear to come from Google in order to persuade people into handing over their Google account credentials. This attack, first flagged by Nick Johnson, the lead developer of the Ethereum Name Service (ENS), a blockchain equivalent of the popular internet naming convention known as the Domain Name
All Gmail users at risk from clever replay attack Leggi tutto »
Last week on Malwarebytes Labs: Text scams grow to steal hundreds of millions of dollars Apple patches security vulnerabilities in iOS and iPadOS. Update now! Hi, robot: Half of all internet traffic now automated “I sent you an email from your email account,” sextortion scam claims “Follow me” to this fake crypto exchange to claim
A week in security (April 12 – April 18) Leggi tutto »
This week on the Lock and Code podcast… If you don’t know about the newly created US Department of Government Efficiency (DOGE), there’s a strong chance they already know about you. Created on January 20 by US President Donald Trump through Executive Order, DOGE’s broad mandate is “modernizing Federal technology and software to maximize governmental
Did DOGE “breach” Americans’ data? (Lock and Code S06E08) Leggi tutto »
This week on the Lock and Code podcast… If you don’t know about the newly created US Department of Government Efficiency (DOGE), there’s a strong chance they already know about you. Created on January 20 by US President Donald Trump through Executive Order, DOGE’s broad mandate is “modernizing Federal technology and software to maximize governmental
Did DOGE “breach” Americans’ data? (Lock and Code S06E08) Leggi tutto »