A quick Saturday digest of cybersecurity news articles from other sources.
620 million records from 16 websites listed for sale on the Dark Web
The Register reports that a seller on the Dream Market – a Dark Web marketplace hidden by the encrypted layers of Tor – began offering 16 stolen databases with 620 million accounts.
First it was location, now every app wants your contacts
Why do app developers need to know your location, and now, your contacts? How come they never tell us why they need this information? Its the $ metadata $, baby.
Chrome extension warns users their login credentials have been breached
Google’s released a Chrome extension, Password Checkup, that’s designed to warn users when they enter a username and password the company has detected in a data breach.
KeySteal could allow someone to steal your Apple Keychain passwords
The researcher says it works without root or administrator privileges and without password prompts. But he’s not revealing how it works to Apple because there’s no money for him in its invite-only/iOS-only bounties.
NIST is looking for Post-Quantum Cryptography
I have written about the death of cryptography at the hands of quantum computing. NIST is holding a competition to see that there will be encryption in the quantum computing age. And explained in English, from Sophos: Serious Security: Post-Quantum Cryptography (and why we’re getting it)
How to Stay Safe from Tax Scams
As people seek to file their tax returns this year, cybercriminals will be busy trying to take advantage of this with a variety of scams. Citizens may learn they are victims only after having a legitimate tax return rejected because scammers already fraudulently filed taxes in their name. According to the Internal Revenue Service (IRS), there was a 60% increase in 2018 in phishing scams that tried to steal money or tax data. The IRS identified 9,557 fraudulent tax returns as of only February 24th, 2018 for the last filing season. As everyone aims to file their returns among all this fraud, the following advice will explain how tax fraud happens and provide recommendations on how to prevent it from happening to you or how to get help if you are unfortunately affected by a tax scam!
McDonald’s app users hatin’ it after being hacked by hungry hamburglars
At least two users of the McDonald’s mobile app aren’t lovin’ it after thieves hijacked their accounts and ordered hundreds of dollars of food for themselves.
Share
MAR
About the Author:
I am a cybersecurity and IT instructor, cybersecurity analyst, pen-tester, trainer, and speaker. I am an owner of the WyzCo Group Inc. In addition to consulting on security products and services, I also conduct security audits, compliance audits, vulnerability assessments and penetration tests. I also teach Cybersecurity Awareness Training classes. I work as an information technology and cybersecurity instructor for several training and certification organizations. I have worked in corporate, military, government, and workforce development training environments I am a frequent speaker at professional conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference in 2016, 2017, 2018, 2019, the (ISC)2 World Congress 2016, and the ISSA International Conference 2017, and many local community organizations, including Chambers of Commerce, SCORE, and several school districts. I have been blogging on cybersecurity since 2006 at http://wyzguyscybersecurity.com