leaks – Page 3 – SSL and internet security news

Used Tesla Components Contain Personal Information

May 8, 2020 infossl

cars, dataloss, dataretention, hardware, identification, internetofthings, leaks, Security technology

Used Tesla components, sold on eBay, still contain personal information, even after a factory reset. This is a decades-old problem. It’s a problem with used hard drives. It’s a problem with used photocopiers and printers. It will be a problem with IoT devices. It’ll be a problem with everything, until we decide that data deletion … Read More “Used Tesla Components Contain Personal Information” »

The Whisper Secret-Sharing App Exposed Locations

March 12, 2020 infossl

blackmail, children, datacollection, dataloss, leaks, secretsharing, Security technology

This is a big deal: Whisper, the secret-sharing app that called itself the “safest place on the Internet,” left years of users’ most intimate confessions exposed on the Web tied to their age, location and other details, raising alarm among cybersecurity researchers that users could have been unmasked or blackmailed. […] The records were viewable … Read More “The Whisper Secret-Sharing App Exposed Locations” »

CIA Dirty Laundry Aired

March 10, 2020 infossl

cia, cybersecurity, hacking, leaks, passwords, Security technology

Joshua Schulte, the CIA employee standing trial for leaking the Wikileaks Vault 7 CIA hacking tools, maintains his innocence. And during the trial, a lot of shoddy security and sysadmin practices are coming out: All this raises a question, though: just how bad is the CIA’s security that it wasn’t able to keep Schulte out, … Read More “CIA Dirty Laundry Aired” »

Apple’s Tracking-Prevention Feature in Safari has a Privacy Bug

February 10, 2020 infossl

apple, leaks, privacy, Security technology, surveillance, tracking, vulnerabilities

Last month, engineers at Google published a very curious privacy bug in Apple’s Safari web browser. Apple’s Intelligent Tracking Prevention, a feature designed to reduce user tracking, has vulnerabilities that themselves allow user tracking. Some details: ITP detects and blocks tracking on the web. When you visit a few websites that happen to load the … Read More “Apple’s Tracking-Prevention Feature in Safari has a Privacy Bug” »

Collating Hacked Data Sets

January 30, 2020 infossl

cybercrime, darkweb, databases, datacollection, leaks, Security technology

Two Harvard undergraduates completed a project where they went out on the dark web and found a bunch of stolen datasets. Then they correlated all the information, and combined it with additional, publicly available, information. No surprise: the result was much more detailed and personal. “What we were able to do is alarming because we … Read More “Collating Hacked Data Sets” »

Half a Million IoT Device Passwords Published

January 22, 2020 infossl

botnets, internetofthings, leaks, passwords, Security technology

It’s a list of easy-to-guess passwords for IoT devices on the Internet as recently as last October and November. Useful for anyone putting together a bot network: A hacker has published this week a massive list of Telnet credentials for more than 515,000 servers, home routers, and IoT (Internet of Things) “smart” devices. The list, … Read More “Half a Million IoT Device Passwords Published” »

First American Financial Corp. Data Records Leak

May 28, 2019 infossl

dataloss, dataprotection, insurance, leaks, Security technology

Krebs on Security is reporting a massive data leak by the real estate title insurance company First American Financial Corp. “The title insurance agency collects all kinds of documents from both the buyer and seller, including Social Security numbers, drivers licenses, account statements, and even internal corporate documents if you’re a small business. You give … Read More “First American Financial Corp. Data Records Leak” »

Another NSA Leaker Identified and Charged

May 9, 2019 infossl

espionage, leaks, nsa, Security technology, whistleblowers

In 2015, the Intercept started publishing “The Drone Papers,” based on classified documents leaked by an unknown whistleblower. Today, someone who worked at the NSA, and then at the National Geospatial-Intelligence Agency, was charged with the crime. It is unclear how he was initially identified. It might have been this: “At the agency, prosecutors said, … Read More “Another NSA Leaker Identified and Charged” »

Iranian Cyberespionage Tools Leaked Online

April 19, 2019 infossl

cyberespionage, doxing, hacking, iran, leaks, Security technology

The source code of a set of Iranian cyberespionage tools was leaked online. Powered by WPeMatico

Oblivious DNS

April 18, 2018 infossl

dna, eavesdropping, encryption, leaks, Security technology

Interesting idea: …we present Oblivious DNS (ODNS), which is a new design of the DNS ecosystem that allows current DNS servers to remain unchanged and increases privacy for data in motion and at rest. In the ODNS system, both the client is modified with a local resolver, and there is a new authoritative name server … Read More “Oblivious DNS” »