Threatpost

Threatpost 

Google Tackles AI Principles: Is It Enough?

June 8, 2018 TH Author AI, artificial intelligence, EFF, Electronic Frontier Foundation, Google, Government, harmful applications, Privacy, robot, seven principles, unintended consequences

AI offers an immense capacity for good — and for unintended consequences. READ MORE HERE…

Read more

Threatpost 

Facebook Software Bug Made Some Private Posts Public: 14 Million Affected

June 8, 2018 TH Author Cambridge Analytica, Data Laws, Data Policy, Data Privacy, Data Regulations, Facebook, Featured, Privacy, social media, twitter

A Facebook glitch in May set millions of posts that users composed to “public” for ten days. READ MORE HERE…

Read more

Threatpost 

Researchers Warn of Microsoft Zero-Day RCE Bug

June 1, 2018 TH Author arbitrary code, Exploit, JScript, Microsoft, Microsoft vulnerability, Vulnerabilities, Web Security, Windows, zdi

A Microsoft Windows vulnerability enables remote attackers to execute arbitrary code – and there’s no patch yet. READ MORE HERE…

Read more

Threatpost 

Browser Side-Channel Flaw De-Anonymizes Facebook Data

June 1, 2018 TH Author css3, de-anonymization, Facebook, Facebook Data, Hacks, mix-blend-mode, pixels, Privacy, side-channel, Vulnerabilities, Vulnerability, Web Security

An attacker can pick up the profile picture, username and the “likes” of unsuspecting visitors who find themselves landing on a malicious website. READ MORE HERE…

Read more

Threatpost 

Public Google Groups Leaking Sensitive Data at Thousands of Orgs

June 1, 2018 TH Author Cloud Security, exposed data, google groups, misconfiguration, Privacy, public settings, sensitive information, Web Security

The exposed information includes accounts payable and invoice data, customer support emails, password-recovery mails, links to employee manuals, staffing schedules and other internal resources. READ MORE HERE…

Read more

Threatpost 

Honda, Universal Music Group Expose Sensitive Data in Misconfig Blunders

June 1, 2018 TH Author apache airflow, AWS, Cloud Security, cloud storage bucket, connect app, data breach, Honda, leak, misconfiguration, Privacy, third party, universal music group

The Honda mistake affects 50,000 users of the Honda Connect App, while UMG exposed corporate keys to the kingdom. READ MORE HERE…

Read more

Threatpost 

Ticketfly, Major Concert Venues Still Offline After Hack

June 1, 2018 TH Author cyber attack, Cyber breach, cyber ransom, Hacks, Ticketfly cyber attack, Web Security

A cyber-attack has brought the websites of both ticket distribution service Ticketfly – and the major venues it services – offline on Thursday. READ MORE HERE…

Read more

Threatpost 

ICANN Launches GDPR Lawsuit to Clarify the Future of WHOIS

May 31, 2018 TH Author contact information, epag, EU, GDPR, Germany, Government, ICANN, internet domains, lawsuit, Privacy, registrar, WHOIS

WHOIS, the searchable “phonebook” of contact data for internet domains, may violate GDPR — or it may not. A lawsuit seeks to find out which it is. READ MORE HERE…

Read more

Threatpost 

Nocturnal Stealer Lets Low-Skilled Cybercrooks Harvest Sensitive Info

May 31, 2018 TH Author data harvesting, exfiltration, low cost, Malware, Malware analysis, nocturnal stealer

The low-cost malware lowers the barrier of entry for carrying out advanced data exfiltration. READ MORE HERE…

Read more

Threatpost 

Huawei Patches Four Server Bugs Rated High Severity

May 31, 2018 TH Author authentication bypass vulnerability, Huawei Technologies, JSON, JSON injection vulnerabilities, Mate 8, P9, P9 Plus, privilege escalation vulnerability, Server, Vulnerabilities

Huawei stamps out four high-severity bugs impacting 20 server models ranging from its XH, RH and CH lines. READ MORE HERE…

Read more