A selection of this week’s more interesting vulnerability disclosures and cyber security news. A great example of (half) forgotten linked app this week via, quite unforgettably, from the Twitter CEO. I’m sure we all have linked services together as authentication of to bridge a data conduit just to do a trial or something and neglected to remove it afterwards. Well…. That lapse could come back to bite in the future. Regular reviews, which are quite honestly easily forgotten should be the norm. What about if the services put out a reminder that you have such connections that have been unused for a while?
Many of us have been sold on the idea that chip-and-pin is the way forward from card fraud however…
It was inevitable that that deep-fakes would eventually be used in fraud. This one is perhaps the first of many. Stay alert!
The rest of the news:
- Update on Pearson Breach: Parent Files Class-Action Suit After Data Breach Exposes Nearly 1 Million Schoolchildren’s Personal Information
- Enjoy the holiday weekend, America? Well-rested? Good. Supermicro server boards can be remotely hijacked
- Newb admits he ran Satori botnet that turned thousands of hacked devices into a 100Gbps+ DDoS-for-hire cannon
- Android Zero-Day Bug Opens Door to Privilege Escalation Attack, Researchers Warn The zero-day vulnerability could enable privilege escalation, and is not part of Google’s Android September security update.
- Facebook Drops Default Facial Recognition Tag Suggestions Facebook will not allow users to _opt out_ of its face recognition feature.