Hackers claim to have #stolen personal information, including customer selfies, of about 300,000 customers from #crypto ATM firm Coin Cloud. The stolen data includes social security numbers, addresses, and occupation details of customers from the US and Brazil. Coin Cloud, which filed for #bankruptcy earlier this year, has yet to release an official statement regarding the #hack.
https://cointelegraph.com/news/coin-cloud-data-hack-united-states-brazil
A recent ruling by a federal appeals court struck down the Biden administration's limits on so-called "ghost guns". The court affirmed a lower court's ruling that the Bureau of Alcohol, Tobacco, Firearms and Explosives did not have the proper authority to change its rules. The ATF rule change had specified the definitions of "firearm" and other terms to regulate the production and distribution of gun parts and kits, which could be easily assembled by a consumer at home, thereby avoiding regulation and requirements for serial numbers. The court's decision was unanimous, led by Judge Kurt Engelhardt, who stated that the ATF rule "flouts clear statutory text and exceeds the legislatively-imposed limits on agency authority in the name of public policy".
https://thehill.com/regulation/court-battles/4304682-appeals-court-atf-ghost-gun-rule/
This Sophos report on the state of #ransomware in the retail industry is quite eye-opening. The fact that only 26% of retail organizations were able to stop a ransomware #attack before their data was #encrypted is alarming. This means that the majority of these attacks resulted in the #encryption of sensitive #data, which can lead to costly recovery efforts and disruption to the business. The report also found that the cost of recovery is four times higher for those who pay the #ransom, which highlights the importance of having a robust #security plan in place. Retailers need to be more proactive in their approach to #cybersecurity in order to protect themselves from these #attacks.
That's right, some lost Doctor Who episodes from the 1960s have been found! The owner of the tapes is apparently reluctant to hand them over to the BBC, which is kind of a bummer. Still, it's exciting that they've been rediscovered, especially with the 60th anniversary of the show coming up soon. These old episodes have become almost legendary in the Doctor Who fandom, and I'm sure fans would love to see them finally made available. It's just a shame that it's turned into a bit of a tug-of-war between the collector and the BBC.
A #hacker has exploited the #Raft defi project in order to mint $3.3 million worth of R #stablecoin without backing. An attempt to convert the R into #ETH fails, with 1,570 ETH ($3.25 million) sent to an inaccessible burn address. The #hack causes R stablecoin to plummet to $0.70 and Raft to halt minting.
Yeah, the fact that the auto makers were accused of intecepting text messages and their defense was "that's not illegal" instead of "OMG, no, we don't read customers' text messages!" is very telling about the amount of privacy you can expect in a modern vehicle.
Opt out. Buy an old clunker. If you're rich, buy an old muscle car instead.
https://therecord.media/class-action-lawsuit-cars-text-messages-privacy
I love my old Power Wagon for this very reason. 🤙🏻
Oh man, this is wild. Scientists in China created a monkey chimera with two sets of DNA - the first ever of its kind. This means the monkey has cells from two different monkey embryos, and it even had some pretty unusual physical characteristics like green, glowing eyes and yellow fingertips. The hope is that this research could lead to advancements in medical research and conservation efforts for endangered species, but it's definitely a bit of a mind-blower. What do you think about this, is it a step too far in the name of science, or is it a promising development?
https://newatlas.com/biology/chimeric-monkey-born-two-sets-dna/
Iceland has declared a state of emergency as powerful earthquakes increase the likelihood of a volcanic eruption in the Reykjanes peninsula. Evacuation plans are in place for the village of Grindavik, located near the earthquake swarm area. The Icelandic Met Office warns that an eruption could occur within several days due to accumulated magma underground.
Security vulnerabilities and cyberattacks continue to pose significant threats across various platforms, with issues ranging from hardware keyloggers and real-world exploits of software vulnerabilities to ransomware attacks targeting institutions like the Industrial and Commercial Bank of China's US offices. Notable incidents include an authentication bypass in Atlassian Confluence, an RCE in PRTG Network Monitor, and malicious typosquatting in the Python package repository. Responses to these disclosures vary, with some organizations promptly addressing the issues while others downplay their significance.
The US branch of China's largest bank, ICBC Financial Services, was hit by a ransomware #attack that caused disturbances in the trading of US Treasury securities on Thursday, with the cybercriminal group #Lockbit being the likely culprit. The Chinese foreign ministry has acknowledged that ICBC is handling the risks and that its operations worldwide have not been impacted, and the effect on the market was negligible as #ICBC continued to clear trades in spite of the attack. US officials are emphasizing the need for improved international cooperation to address the challenge of #ransomware.
A judge recently ruled that it's perfectly legal for car manufacturers to harvest text messages and call logs from their vehicles, even if those messages and logs are inaccessible to the owners. The judge said that this practice doesn't violate state privacy laws because the information is stored in a way that's inaccessible to the owners. This has raised some concerns about privacy and data collection in cars, since many people store sensitive information on their phones and may not want it being accessed by their car. Do you think this is a cause for concern?
#Tumblr is facing an uncertain future as its latest owner, Automattic, reassigns majority of its product and marketing employees to other divisions. The decision comes after years of efforts to increase revenue and usage, with a memo acknowledging that expected results were not achieved. Despite the reassignment, no employees will be let go and team members can choose their preferred assignments within Automattic.
Encrypted messaging app #Signal is testing public account usernames, allowing users to connect without sharing their phone numbers. The new method requires associating an account with a phone number during setup but does not share the number when contacting other users, enhancing #privacy and #security. The username test is currently in a pre-beta stage and limited to a separate build, with no confirmed timeline for its release.
https://www.macrumors.com/2023/11/09/signal-private-messenger-tests-usernames/
Omegle, an online service for chatting with strangers, shuts down after 15 years due to misuse and "unspeakably heinous crimes." Despite a decline in popularity, #Omegle still attracted around 50 million visitors last month. Founder Leif K-Brooks expresses his disappointment in the changing landscape of the internet and the lack of genuine human connection.
Sen. Ted Budd has introduced the Keep Your Coins Act, aiming to protect individuals' rights to self-custody their crypto assets without intermediaries. The bill aligns with Rep. Warren Davidson's similar initiative in the House to prevent the enforcement of regulations requiring third-party custodians. The SEC's regulatory actions and approach, including enforcement against exchanges, have raised concerns among both lawmakers and critics regarding industry innovation.
https://decrypt.co/204968/two-republicans-want-to-protect-your-ability-to-self-custody-crypto
WhatsApp now allows users to hide their IP addresses during calls by relaying calls through WhatsApp's servers to obfuscate their location. This new privacy feature addresses concerns about revealing IP addresses, which can sometimes expose information such as geographical location or internet provider. While enabling the feature, users should be aware that call quality may be reduced.
https://www.macrumors.com/2023/11/08/whatsapp-hide-your-ip-address-during-calls/
Highly invasive malware disguised as obfuscation tools targets developers, installing payloads that give attackers control of their machines. Eight separate packages, including the most recent "pyobfgood," were downloaded over 2,300 times, primarily in the US. Malicious payloads include stealing data, downloading additional malware, and secretly taking web camera photos, with mocking messages sent back to Discord channels.
The IRS's proposed increase in #cryptocurrency #surveillance could lead to a surge in #confiscations by the Department of Justice. The DOJ wants to expand its authority to seize cryptocurrency in order to deter fraud and manipulation. The vast surveillance data collected by the IRS could provide new opportunities for cryptocurrency confiscation, even without evidence of a crime.
https://cointelegraph.com/news/expect-new-irs-crypto-surveillance-come-with-surge-confiscation
Mobile data broker #Kochava accused of unfair use and sale of sensitive data without #consent, revealing a pattern of invading #privacy. Kochava's database allegedly contains a vast amount of #sensitive information, including personal identification, demographics, and location history.
A 104 page Interim Staff Report from the Committee on the Judiciary and the Select Subcommittee on the Weaponization of the Federal Government, dated 6 November 2023 details how the feds partnered with universities to stifle free speech before the 2020 election.