Two-factor authentication (2FA) is widely recommended for security, but the devil is in the details. Google recently faced issues with their Google Authenticator app, causing concern in the security community.Authenticator apps like Google Authenticator, Microsoft Authenticator, and Authy generate time-dependent six-digit numbers based on a secret key. This system, known as time-based one-time passwords (TOTP), […]
Cybercriminals have employed a sophisticated attack method by infecting TP-Link router firmware to target European Union (EU) entities, as reported by Bleeping Computer.The attackers have compromised the firmware of TP-Link routers, a popular brand used widely across Europe, to gain unauthorized access and launch cyberattacks.The infected firmware allows hackers to control the compromised routers remotely, […]
Toyota has exposed the location data of 2.3 million customers for over a decade. The information was accessible due to a security breach in their sales module. The data included customers’ names, email addresses, and vehicle identification numbers (VINs). The breach occurred in Japan, but the data of customers from several countries, including the US […]
A UK national, Joseph James O’Connor, has pleaded guilty to his involvement in the July 2020 Twitter hack that targeted numerous high-profile accounts and defrauded users of the platform. O’Connor and his co-conspirators seized control of 130 Twitter accounts, including those belonging to Barack Obama, Bill Gates, and Elon Musk, to perpetrate a cryptocurrency scam […]
The Cologne District Court has ruled in a non-final judgment on March 23, 2023 (file no. 33 O 376/22) that the use of GoogleAnalytics on the telekom_de website is unlawful, as it violates Art. 44 ff. of the General Data Protection Regulation (GDPR) According to the court, the transmission of IP addresses as well as […]
UK ministers have been warned that WhatsApp could disappear from the country due to privacy concerns. The warning comes as a result of a proposed new law that would require messaging platforms to allow law enforcement access to encrypted messages in certain circumstances. WhatsApp currently uses end-to-end encryption, which prevents anyone, including WhatsApp itself, from […]
Santander, a UK-based bank, is warning customers about an increase in impersonation scams where fraudsters pretend to be the bank in order to steal money from unsuspecting victims. The bank has identified several tactics used by scammers, including phishing emails and phone calls, fake websites, and even physical letters sent through the post. Santander is […]
A passkey is a digital key that is linked to a user account and a website or app. It lets users prove who they are without needing to type in a username, password, or provide another authentication factor. Once the option has been set up, you can sign f.e. into your Google account with your […]
Many corporate boards are not having the right conversations about cybersecurity, according to a recent article in Harvard Business Review.Boards often focus on technical details and compliance rather than strategic risk management and governance. This can result in a false sense of security and a failure to adequately address emerging threats.Boards should engage in regular […]
Microsoft is testing a “private ChatGPT” alternative to its language model, which is designed to alleviate concerns about data privacy. The private version, called “Microsoft Private AI,” would be limited to a specific organization and its data would not leave the organization’s network. This move comes as companies are increasingly concerned about the security and […]