A selection of this week’s more interesting vulnerability disclosures and cyber security news. Its been a while (or maybe not – ah, actually last week about the Aga oven!) that I’ve not moaned about IoT, but this week instead then, a gem of a company alleged to be collecting data on user habits without making it clear. This sort of thing does appear to pop up on a regular basis, though of course we do willing give so much to companies such as social media platforms, this kind of activity however goes below the radar:
In the general IoT world this sort of thing doesn’t help:
Then we have someone trying to stem such floods using highly debatable tactics:
The other non-IoT news…
- Miffed with Snapchat CEO, Indian hackers claim to have leaked data of 1.7 million app users Shashank Shekhar reports
- Montreal man gives HP failing grade after data breach And once again, we see why incident response is so important to reputation management. CBC reports
- ‘We should have done better’ the feeble words of a CEO caught using real hospital IT in infosec product demos (The Register)
- 6 Times Hollywood Got Security Right Hollywood has struggled to portray cybersecurity in a realistic and engaging way. Here are films and TV shows where it succeeded.
- Personal details of thousands of UK drivers ‘are exposed in huge data breach’ as car parking app used by councils across Britain shows users other motorist’s information Rebecca Taylor reports
- UK.gov survey shines light on cybersecurity threats to businesses (The Register)
- White Hat Hacker Created Mysterious IoT Worm, Symantec Says (SecurityWeek)
- Windows bug used to spread Stuxnet remains worlds most exploited (ArsTechnica)
- Mobile devices with Broadcom chipsets may be vulnerable to Wi-Fi hijacking (TechRepublic)
- Nearly 40% of Ransomware Victims Pay Attackers Ransomware is targeting more consumers, and many of them are paying hundreds to attackers.