Security researchers from CYFIRMA have discovered over 80,000 Hikvision cameras affected by a critical command injection vulnerability tracked as CVE-2021-36260. The Chinese vendor addressed the issue in September 2021, but tens of thousands of devices are yet to be patched. An attacker can exploit the flaw by sending specially crafted messages to the web server […]
African governments, large corporates, and tech entrepreneurs have embraced the West’s vision of a universal identity system. With support from the World Bank’s Identification for Development (ID4D) programme, governments across Africa have foisted elaborate and expensive biometric ID schemes on citizens and residents with little pushback from civil society. Both the World Bank and digital […]
A vulnerability in the Android version of the Ring app, which is used to remotely manage Amazon Ring outdoor (video doorbell) and indoor surveillance cameras, could have been exploited by attackers to extract users’ personal data and device’s data, including geolocation, address, and recordings.
The built in web browser of Meta for the iPhone Facebook and Instagram applications can collect far more information about users than they probably realize. It can “track every single interaction with external websites,” according to a developer.
Companies will be under increased pressure after Europe’s top court ruled they must apply special protections to data that firms previously didn’t consider sensitive such as health, religion, political views and sexual orientation. The European Court of Justice on Aug. 1 determined that public officials in Lithuania had their sensitive data revealed because their spouses’ […]
Cisco confirmed it was the victim of a cyberattack on May 24, 2022 after the attackers got hold of an employee’s personal Google account that contained passwords synced from their web browser.“Initial access to the Cisco VPN was achieved via the successful compromise of a Cisco employee’s personal Google account” “The user had enabled password […]
Attackers managed to steal usernames and passwords from Cloudflare employees through a phishing attack and then tried to log into the internet company’s systems. Because Cloudflare requires the use of a physical security key for all employees as two-factor authentication, the attackers were not allowed access, the company said in a blog post.he attack on […]
Amazon bought for $1.7 billion iRobot company with the smart vaccuum cleaner Roomba to get inside into your house. What else might be from Amazon in your house:– Echo smart speakers estimated 9.9 million units sold;– Video doorbell Ring which was bought for $1 billion;– Smart Camera Blink;– wi-fi company Eero. What can your derive […]
Cloud communications company Twilio says some of its customers’ data was accessed by attackers who breached internal systems after stealing employee credentials in an SMS phishing attack.
In an attack on Twitter, data of 5.4 million users was stolen, which was then offered for sale on the Internet, the company has confirmed. Last month, Restore Privacy reported that an attacker had obtained account details of 5.4 million users through a vulnerability in Twitter. The vulnerability made it possible to retrieve telephone numbers […]