Source: Brian Kreb’s Toot
https://newsie.social/@[email protected]/113052958086089764
Microsoft reported today that a North Korean hacking group used a Google Chrome zero-day in an effort to target organizations with the goal of stealing cryptocurrency….
Microsoft declined to say how many organizations may have been affected by the 0-day exploit.
https://techcrunch.com/2024/08/30/north-korean-hackers-exploited-chrome-zero-day-to-steal-crypto/
https://www.microsoft.com/en-us/security/b
Source: Clearview AI was keeping an illegal database of faces; gets fined
https://www.androidheadlines.com/2024/09/clearview-ai-fined.html
Nowadays, the concept of digital privacy is a distant memory, as companies swipe more and more of our data. Not many people know that photos of them are on a massive online database owned by a company called Clearview AI. Well, Clearview AI was fined €35 million for illegally storing the facial data of Dutch citizens. In case you don’t know, Clearview AI is an American company that maintains a massive pool of images of people’s faces. It boasts a whopping 50 billion images, so you know that it contains images of people from around the world. It sells this facial data to intelligence and investigative agencies. Governmental agencies and law enforcement entities benefit from this company’s data.
Clearview AI was fined $35 million for illegally storing Dutch citizens’ data. Even though Clearview AI is an American company, it’s still bound by the rules of other countries.
…
Filed: https://www.androidheadlines.com/category/tech-news
Source: Becker’s Health IT
https://www.beckershospitalreview.com/cybersecurity/crowdstrike-executive-to-testify-on-hospital-it-outage.html
An executive from a cybersecurity company that caused a global IT outage that affected hospitals will testify before Congress in September. Adam Meyers, senior vice president of counter adversary operations at CrowdStrike, is scheduled to appear at a House Subcommittee on Cybersecurity and Infrastructure Protection meeting Sept. 24. The company sent out a faulty update in July that prevented millions of computers running on Microsoft Windows — including at many hospitals and health systems — from starting up.
…
Filed: https://www.beckershospitalreview.com/cybersecurity.html
Subject: Trump Free Crypto Scam on Telegram Targets Thousands
Source: tech.co
https://tech.co/news/trump-free-crypto-scam
Tens of thousands exposed to scam after following the World Liberty Financial promoted by 45th President of the United States.
Donald Trump has been no stranger to promoting the benefits of crypto products. But now a project that he has backed has been targeted by scammers, with thousands of people potentially at risk of having money stolen.Cybercriminals have managed to place ads on the official Telegram account for World Liberty Financial (WLF) – a fairly mysterious new financial platform that has been promoted by the 45th president of the United States via his Truth Social social media network….What is World Liberty Financial? While details are still a little scant, WLF appears to be an impending decentralized financial platform that will be, on the face of it, managed by the Trump family.For now it exists only in the form of the ‘Official Trump DeFi Channel’ (‘DeFi’ standing for ‘decentralized finance’) on Telegram. The channel’s handle, @defiant1s, is a hangover from WLF’s original name ‘The DeFiant Ones’….Since its inception, the channel has also posted a message from the presidential candidate’s son Donald Trump Jr, in which he rails against “how crooked banks and financial institutions rig the system against everyday Americans” and saying that WLF will make finance great again – a play on his father’s popular campaign slogan.
…
The WLF scam isn’t the first and is unlikely to be the last executed via a social media service. Scams on Facebook and Facebook Marketplace are commonplace, for example, while TikTok has become a hotbed for cryptocurrency scams, too.
Source: Nextgov/FCW
https://www.nextgov.com/cybersecurity/2024/09/under-quarter-rural-hospitals-are-using-white-houses-free-cyber-resource-program-official-says/399251/
The commitments from industry leaders announced in June seek to help small healthcare centers boost their cybersecurity posture. Around 350 of some 1,800 small and rural U.S. hospitals are leveraging free and low-cost private sector cybersecurity resources that were marshaled by the White House this summer, a top White House cyber official said Tuesday.Deputy National Cyber Director for Cybersecurity and Emerging Technology Anne Neuberger provided the update at the 2024 Billington Cyber Summit and said she hoped more would join with time.
Hospitals receiving the services span the country, from Maine to Texas and the Midwest. Rural hospitals, defined as being more than 35 miles from another hospital, have become a top issue for the National Security Council because patients have to travel much further to access care if their closest hospital is impacted by a cyber intrusion.
…
Filed: https://www.nextgov.com/cybersecurity/
Source: Gizmodo
https://gizmodo.com/in-a-big-blow-to-internet-archive-appeals-court-says-online-lending-library-is-not-fair-use-2000494847
The U.S. Court of Appeals for the Second Circuit ruled against the Internet Archive today, upholding an earlier ruling in the long-running Hachette v. Internet Archive copyright case.For years, the IA scanned physical copies of library books and allowed people to check out digital versions through its Open Library project. It did so on a one-to-one basis. Meaning that checking out a digital copy would pull it from the “shelf” until someone returned it. In 2020, as the pandemic shut down libraries across the planet, it expanded its effort with the National Emergency Library program. Under the NEL, books were rented infinitely.
The publishing world didn’t react well to the NEL and the IA shut down the program two months after it launched. Then the publishers, including Hachette, HarperCollins, Penguin Random House, and Wiley sued. The court ruled in favor of the publishers in 2023 and the IA appealed.
“This appeal presents the following question: Is it ‘fair use’ for a nonprofit organization to scan copyright-protected print books in their entirety, and distribute those digital copies online, in full, for free, subject to a one-to-one owned-to-loaned ratio between its print copies and the digital copies it makes available at any given time, all without authorization from the copyright-holding publishers or authors,” the judges wrote in the decision.
The court has decided it does not qualify for fair-use protections.
…
Chris Freeland, the Internet Archive’s Director of Library Services, vowed to continue fighting for the preservation of books. “We are disappointed in today’s opinion about the Internet Archive’s digital lending of books that are available electronically elsewhere,” he said in a statement posted at the Archive. “We are reviewing the court’s opinion and will continue to defend the rights of libraries to own, lend, and preserve books.”
Source: Slate
https://slate.com/technology/2024/09/chase-atm-money-glitch-viral-tiktok-trend-fraud.html?via=rss
Just before Labor Day weekend, word started traveling around TikTok about a “glitch” at Chase Bank ATMs. A few viral posters noticed that they could deposit a check and withdraw a significant portion of the funds immediately, rather than after a holding period of several days. They then got an idea that people have been getting for generations: What if I’ve just stumbled onto a consequence-free trick to legally steal money from America’s largest bank?Here, TikTok itself became a problem. People have published financial advice for generations, but vertical video apps have empowered financially illiterate creators to push their ideas directly to other financially illiterate users. By the holiday weekend, word had spread around the app and seeped into the rest of the internet that there was a way to take free money out of Chase ATMs. TikTok’s algorithmic For You page pumped it around the country at hyperspeed, and quickly the hype ran right into reality. Sad young men posted about five-figure negative balances in their bank accounts. Media outlets published stories pointing out that stealing money with bad checks is criminal fraud. Chase released a statement confirming that it had “addressed” the matter, and that was that.
…
Tagged:
Filed:
Source: Android Central
https://www.androidcentral.com/accessories/how-to-scan-for-unknown-trackers-that-might-be-following-you
Bluetooth trackers are useful to help you keep track of valuables, but some people can use them for the wrong reasons. Bluetooth and other types of mobile device trackers are great for being able to locate and retrieve your lost items. These small Bluetooth tags are designed to attach to keys or placed in wallets, purses, or backpacks to keep track of valuables. Some people even use them on pet collars. But they can also be used by people for the wrong reasons.
Individuals can place a Bluetooth tracker in your personal belongings to be able to track your location, unbeknownst to you and without your consent. They can be hidden away in a jacket pocket, for example, in the depths of your backpack, or even in your vehicle. Thankfully, there’s a way to verify this isn’t being done to you. In fact, your smartphone automatically notifies you if it detects an unknown one so you can take the appropriate steps.
What is an unknown tracker alert?
…
Filed: https://www.androidcentral.com/accessories
Topic: https://www.androidcentral.com/tag/bluetooth
Source: BrianKrebs Mastodon
https://newsie.social/@[email protected]/113086697957778117
Last month, I heard from a U.S. veteran who had agreed to take a series of surveys from the U.S Department of Veterans Affairs regarding their attitudes about sharing health data. Participants were promised $50 in gift cards from the VA if they completed the surveys.The reader was reaching out because he’d indeed received 5 $10 CVS gift cards in the mail via the VA, but all of them had zero balances when he checked them online.
The VA sent out a message to participating vets, saying that “due to a hacking issue with the CVS system, there is a chance the cards you receive may be less than $50 total value.”
Another message from the VA’s Timothy Hogan referenced “a hacking issue within the CVS system that may have affected the gift cards we sent in appreciation for completing a Veteran Affairs Patient Survey on how Veterans share their health data.”
CVS has not responded to many requests for comment or clarification over the past two weeks. Like I don’t exist.
Welp, I wonder how this experience has affected veteran attitudes about sharing data?
Source: Newser
https://www.newser.com/story/355802/amazon-admits-to-tech-glitch-in-qs-over-harris-trump.html
Amazon says it has fixed glitch that made virtual assistant appear to favor VP over former president
A couple of simple questions to Alexa about the upcoming US election have sent users into a tizzy, with conservative critics railing against what Amazon now says was a tech glitch that seemed to favor Vice President Kamala Harris over former President Trump.
- Acknowledged error: The Washington Post notes that after “software engineers scrambled” to figure out the issue, they determined it was tied to the installation last year of Info LLM, software that was meant to make Alexa more accurate. “These responses were errors that never should have happened, and they were fixed as soon as we became aware of them,” an Amazon rep tells the paper.
More ALEXA stories: https://www.newser.com/tag/74527/1/alexa.html