European volleyball org’s Azure bucket exposed reporter passports

Bleeping Computer A publicly exposed cloud storage bucket was found to contain images of hundreds of passports and identity documents belonging to journalists and volleyball players from around the world. These sensitive documents were hosted on a Microsoft Azure blob storage share that was publicly accessible to anyone. Further investigation by BleepingComputer revealed that the source of the leak was …

European volleyball org’s Azure bucket exposed reporter passports Read More »

US govt: Number of identity theft reports doubled last year

Bleeping Computer The U.S. Federal Trade Commission (FTC) said today that the number of identity theft reports has doubled during 2020 when compared to 2019, reaching a record 1.4 million reports within a single year. Throughout last year, fraudsters have continuously targeted government funds reserved for people finding themselves in financial trouble due to the …

US govt: Number of identity theft reports doubled last year Read More »

Xiaomi denies ties to China’s military, calls US ruling “unconstitutional”

Ars Technica One of the Trump administration’s last acts in mid-January was to declare Chinese smartphone maker Xiaomi a “Communist Chinese military company.” The ruling from the Department of Defense (which is different from the Department of Commerce’s export ban against Huawei) bans US citizens from holding Xiaomi stock or other investments starting March 15, 2021. This …

Xiaomi denies ties to China’s military, calls US ruling “unconstitutional” Read More »

Mozilla Announces the Demise of Two Firefox Extensions

Softpedia Mozilla has announced that both Voice Fill and Firefox Voice Beta extensions would be retired, with the add-ons to be uninstalled automatically on February 19. The decision comes after the company decided to retire the Mozilla Speech Proxy Server, Mozilla explains in an announcement today. And because this server was the one powering the …

Mozilla Announces the Demise of Two Firefox Extensions Read More »

Security News This Week: Update Your iPhone and iPad Now If You Haven’t Recently

WIRED Believe it or not, GameStop stock wasn’t the world’s only story this week. The last few days have been tumultuous for cybersecurity as well, especially after revelations that North Korean hackers targeted security pros with a campaign of convincing DMs. Lots of folks shared screenshots of how they dodged the bullet, but it’s still …

Security News This Week: Update Your iPhone and iPad Now If You Haven’t Recently Read More »

GnuPG crypto library can be pwned during decryption – patch now!

Naked Security Bug hunter Tavis Ormandy of Google’s Project Zero just discovered a dangerous bug in the GNU Privacy Guard team’s libgcrypt encryption software. The libgcrypt library is an open-source toolkit that anyone can use, but it’s probably best known as the encryption library used by the GNU Privacy Guard team’s own widely deployed GnuPG …

GnuPG crypto library can be pwned during decryption – patch now! Read More »

UK Research and Innovation (UKRI) suffers ransomware attack

Bleeping Computer The UK Research and Innovation (UKRI) is dealing with a ransomware incident that encrypted data and impacted two of its services, one offering information to subscribers and the platform for peer review of various parts of the agency. UKRI is a public body of the Government of the United Kingdom, tasked with investing in …

UK Research and Innovation (UKRI) suffers ransomware attack Read More »

Google Play bans open-source Matrix client Element, citing “abusive content”

Ars Technica The latest app to catch an illogical ban from the Google Play Store is Element, an open-source, end-to-end encrypted messaging client for the federated Matrix chat protocol. Google banned Element late Friday night, a ban which Element said “is due to abusive content somewhere on Matrix.” Matrix has millions of users, and as …

Google Play bans open-source Matrix client Element, citing “abusive content” Read More »

Google: North Korean hackers have targeted security researchers via social media

ZDNet Google said today that a North Korean government hacking group has targeted members of the cyber-security community engaging in vulnerability research. The attacks have been spotted by the Google Threat Analysis Group (TAG), a Google security team specialized in hunting advanced persistent threat (APT) groups. In a report published earlier today, Google said North …

Google: North Korean hackers have targeted security researchers via social media Read More »