Troy Hunt

NOVEMBER 13, 2024

Apparently, before a child reaches the age of 13, advertisers will have gathered more 72 million data points on them. I knew I'd seen a metric about this sometime recently, so I went looking for "7,000", which perfectly illustrates how unaware we are of the extent of data collection on all of us.

Data breaches 299

Data breaches Passwords B2B Technology 299

Threatpost

FEBRUARY 26, 2019

How features such as infotainment and driver-assist can give others a leg up on car owners.

Data collection 103

Data collection Hacking Engineering 103

WIRED Threat Level

JUNE 4, 2024

Windows Recall takes a screenshot every five seconds. Cybersecurity researchers say the system is simple to abuse—and one ethical hacker has already built a tool to show how easy it really is.

Data collection 143

Data collection Cybersecurity Hacking 143

The Last Watchdog

MAY 11, 2021

By patiently slipping past the best cybersecurity systems money can buy and evading detection for 16 months, the perpetrators of the SolarWinds hack reminded us just how much heavy lifting still needs to get done to make digital commerce as secure as it needs to be. Related: DHS launches 60-day cybersecurity sprints.

Software 202

Software Hacking Malware Engineering 202

Security Affairs

NOVEMBER 17, 2018

A hacker going online by the moniker AmFearLiathMor is claiming to have hacked the most popular end-to-end encrypted email service ProtonMail. At the time it is not clear if the hacker belongs to a cyber crime gang, it claims to have stolen a “significant” amounts of data from the company. The ransom demand ( archive.is

Scams 111

Scams Hacking Data collection Advertising 111

Security Affairs

JUNE 19, 2021

Currently, the Atomic Energy Research Institute is investigating the subject of the hacking and the amount of damage, etc. ? SecurityAffairs – hacking, North Korea). The post North Korean APT group Kimsuky allegedly hacked South Korea’s atomic research agency KAERI appeared first on Security Affairs. Pierluigi Paganini.

Hacking 144

Hacking VPN Internet Internet 144

Security Affairs

DECEMBER 5, 2024

Automating Repetitive Tasks AI can also automate many of the tasks that make being a SOC analyst so mind-numbing, including data collection, cross-referencing information, and running queries. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, SOC Burnout)

Artificial Intelligence 134

Artificial Intelligence Data collection Cybersecurity Risk 134

Security Affairs

FEBRUARY 6, 2020

based specification for a suite of high-level communication protocols used to create personal area networks with small, low-power digital radios, such as for home automation, medical device data collection, and other low-power low-bandwidth needs, designed for small scale projects which need wireless connection. Pierluigi Paganini.

Hacking 141

Hacking IoT Wireless Firmware 141

Security Affairs

JANUARY 16, 2025

Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,data breach) The security breach occurred on December 13, 2023, but the company discovered the incident only on April 18, 2024, and has only now disclosed it due to the complexity of the digital forensic investigation.

Data breaches 94

Data breaches Identity Theft Consumer Protection Data collection 94

Adam Levin

JANUARY 18, 2019

The breached data, dubbed “Collection #1” by cybersecurity expert Troy Hunt , is more than 87 gigabytes and contains roughly 773 million email address and 21 million unique passwords. Hunt found an archive of the data on MEGA, a file-sharing site and has been featured on at least one hacking forum.

Accountability 198

Accountability Passwords Data breaches Data collection 198

Malwarebytes

DECEMBER 7, 2021

Microsoft has taken control of 42 web domains that a hacking group was using to try to breach its targets. Sadly, any setback to the Chinese hacking group or others will likely be temporary as the hackers will find and build new infrastructure to use in forthcoming attacks. An overview of Chinese hacking groups and their aliases.

Hacking 120

Hacking Malware Surveillance Data collection 120

Security Affairs

MARCH 27, 2025

In January, Italys Data Protection Authority Garante asked the AI firm DeepSeek to clarify its data collection, sources, purposes, legal basis, and storage, citing potential risks to user data. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,Deepseek)

Malware 66

Malware Data collection Advertising Media 66

Security Affairs

MAY 11, 2019

The extent of the flaw is wide, according to data collected by Krstic during the study, the vulnerabilities could impact up to 10 million people and 30,000 doors at 200 facilities. SecurityAffairs – buildings, hacking). Pierluigi Paganini.

Hacking 111

Hacking Advertising Surveillance Data collection 111

Krebs on Security

AUGUST 26, 2020

Ngo got his treasure trove of consumer data by hacking and social engineering his way into a string of major data brokers. By the time the Secret Service caught up with him in 2013, he’d made over $3 million selling fullz data to identity thieves and organized crime rings operating throughout the United States.

Identity Theft 356

Identity Theft Computers and Electronics Hacking Accountability 356

Malwarebytes

OCTOBER 15, 2024

The network of data brokers that political campaigns rely on to target voters with ads is enormous, as one Washington Post reporter found in 2020, with “3,000 data points on every voter.” Escaping this data collection regime has proven difficult for most people.

Scams 138

Scams Identity Theft Cybercrime Accountability 138

Malwarebytes

DECEMBER 7, 2021

Microsoft has taken control of 42 web domains that a hacking group was using to try to breach its targets. Sadly, any setback to the Chinese hacking group or others will likely be temporary as the hackers will find and build new infrastructure to use in forthcoming attacks. An overview of Chinese hacking groups and their aliases.

Hacking 96

Hacking Malware Surveillance Data collection 96

Security Affairs

FEBRUARY 2, 2025

Last week, Italys data protection watchdog blocked Chinese artificial intelligence (AI) firm DeepSeek s chatbot service within the country, citing a lack of information on its use of users personal data. Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,DeepSeek)

Government 77

Government Artificial Intelligence Media Data collection 77

SecureWorld News

JUNE 23, 2020

Generally, these are the massive resources carrying COVID-19 research and data—the kind a country might want if they're in a race to create a coronavirus vaccine. That's why some are theorizing that a recent hack of ARCHER , a U.K.-based research organizations involved in COVID-19 data collection.

Hacking 98

Hacking Cyber threats Data collection Internet 98

SC Magazine

JULY 13, 2021

The large amount and very personal types of data collected by the organization is an extremely valuable dataset for cybercriminals if they want to steal identities, said Erich Kron, security awareness advocate at KnowBe4. The post Fashion brand Guess hacked, DarkSide ransomware group the likely culprit appeared first on SC Media.

Retail 102

Retail Ransomware Hacking Digital transformation 102

Security Affairs

JANUARY 30, 2025

Italys data privacy regulator Garante has requested information from Chinese AI company DeepSeek regarding its data practices. Italys Data Protection Authority Garante has asked the AI firm DeepSeek to clarify its data collection, sources, purposes, legal basis, and storage, citing potential risks to user data.

Artificial Intelligence 71

Artificial Intelligence Data collection Data privacy DDOS 71

Dark Reading

MARCH 17, 2023

The chances of getting hacked are no longer low. Companies need to rethink their data collection and monitoring strategies to protect employee privacy and corporate integrity.

Data collection 97

Data collection Hacking 97

Krebs on Security

DECEMBER 20, 2022

Justice Department indicted four Chinese officers of the People’s Liberation Army (PLA) for perpetrating the 2017 Equifax hack. Americans currently have no legal right to opt out of this data collection and trade. In February 2020, the U.S. billion for the quarter ending September 2022.

Identity Theft 285

Identity Theft Data breaches Data collection Hacking 285

Malwarebytes

MARCH 10, 2025

This week on the Lock and Code podcast… Something’s not right in the world of location data. In January, a location data broker named Gravy Analytics was hacked, with the alleged cybercriminal behind the attack posting an enormous amount of data online as proof.

Mobile 72

Mobile Advertising Data collection Hacking 72

Threatpost

FEBRUARY 7, 2020

Wacom stated that its data collection is done only in aggregate -- but that doesn't fix the issues, according to security experts.

Data collection 104

Data collection Hacking 104

Security Affairs

DECEMBER 31, 2023

. “Judge Rogers had rejected Google’s bid to have the case dismissed earlier this year, saying she could not agree that users consented to allowing Google to collect information on their browsing activity.” Google has yet to respond to a request for comment on the settlement.

Data collection 144

Data collection Advertising Hacking Technology 144

Security Affairs

DECEMBER 2, 2023

While WeMystic has since closed the database, researchers said that the data was accessible for at least five days. One of the data collections in the exposed instance, named “users,” contained a whopping 13.3 Businesses employ MongoDB to organize and store large swaths of document-oriented information.

Data collection 140

Data collection Risk Hacking Information Security 140

Security Affairs

NOVEMBER 24, 2020

The code found in both apps allowed to gather device data, including model, MAC address, carrier information, and IMSI (International Mobile Subscriber Identity) number. The data collection code was found in the Baidu Push SDK, used to show real-time notifications inside both apps. SecurityAffairs – hacking, Android).

Data collection 115

Data collection Mobile Spyware Surveillance 115

Security Affairs

FEBRUARY 28, 2020

Network data collected by the NetBlocks internet observatory confirm that Turkey has blocked access to social media as Idlib military crisis escalates. SecurityAffairs – hacking, Turkey). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Media 135

Media Data collection Internet Internet 135

The Last Watchdog

JUNE 20, 2022

Data collections released after ransomware attacks. The financial losses associated with a hacking incident – not to mention the loss of customer trust and faith in a brand – make for a difficult and expensive recovery. Databases with critical IP and/or PII. Chatter about the best methods to attack your business.

Ransomware 260

Ransomware Marketing Data collection VPN 260

CyberSecurity Insiders

NOVEMBER 16, 2021

Bugcrowd’s Inside the Mind of a Hacker report compiled from the data collected in between May 1st, 2020 to August 31st, 2021 states that security vulnerabilities have increased since the start of COVID-19 pandemic, as most companies opted for work from home operations.

Data collection 135

Data collection Scams Hacking Malware 135

Security Affairs

DECEMBER 12, 2023

The North Korea-linked APT group Lazarus is behind a new hacking campaign that exploits Log4j vulnerabilities to deploy previously undocumented remote access trojans (RATs). ” Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, APT) .”

Malware 128

Malware Data collection Manufacturing Healthcare 128

Security Affairs

NOVEMBER 16, 2018

Thirteen exchanges were hacked in 2017 and in the first three quarters of 2018, amounting to a total loss of $877 million. GIB Threat Intelligence cyber threats data collection system has been named one of the best in class by Gartner, Forrester, and IDC. Attacks on Crypto. Pierluigi Paganini.

Cybercrime 108

Cybercrime Hacking Banking Phishing 108

Security Affairs

OCTOBER 23, 2023

Teodoro ordered “to refrain from using AI photo generator applications and practice vigilance in sharing information online” At this time, it remains unclear whether the order was issued in response to a specific event or to address potential attacks aimed at exploiting the data collected by these applications.

Identity Theft 134

Identity Theft Social Engineering Data collection Risk 134

CyberSecurity Insiders

JANUARY 12, 2022

All the data collected by Europol regarding citizens linked to no criminal activity will from now on be deleted after a retention period of just 6 months. In general, the European Union Agency for Law Enforcement Cooperation maintains enormous data sets containing information of individuals as per the governing body policing.

Data collection 138

Data collection Government Hacking Cybersecurity 138

Security Affairs

OCTOBER 11, 2020

Data collected by the agency is used by the federal government to allocate over $675 billion in federal funds to tribal, local, and state governments every year. SecurityAffairs – hacking, US Census Bureau). Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Government 145

Government Advertising Hacking Data collection 145

Security Affairs

DECEMBER 23, 2023

” reads the data breach notification email sent to the impacted customers. “Mint’s data collection policy is one of the most important ways in which we ensure the privacy and security of our subscribers. Our investigation indicates that certain information associated with your account was impacted.”

Data breaches 134

Data breaches Mobile Wireless Data collection 134

Schneier on Security

SEPTEMBER 26, 2019

While it's unlikely that China would bother spying on commuters using subway cars, it would be much less surprising if a tech company offered free Internet on subways in exchange for surveillance and data collection. That's an easier, and more fruitful, attack path.

Surveillance 255

Surveillance Wireless Government Internet 255