Cybersafety Sentinel February 2023 Week 4

Claudiu’s Top Post

There *seems* to be a growing number of dropped and underreported news stories of late. One such event could be the “#FBI hack” that reportedly took place this week but was swiftly defused by a single line of the agency’s website: “This is an isolated incident that has been contained.” Was it though? Isolated, I mean. Read More

School Info Left on Auctioned Laptops

When a Texas school district sold some old laptops at auction last year, it probably didn’t expect to end up in a public legal fight with a local computer repair shop – but a debate over what to do with district data found on the liquidated machines has led to precisely that. Read More

Samsung Zero-Click Malware Attacks

Samsung has announced a new feature called Message Guard that comes with safeguards to protect users from malware and spyware via what’s referred to as zero-click attacks which exploit previously unknown flaws (i.e., zero-days) in software to trigger execution of malicious code without requiring any user interaction. Read More

Law Firm Fined For Not Stopping Hack

Judith Hawarden lost her millions after hackers changed the bank account number in a PDF emailed by the law firm. Africa’s largest law firm has been ordered to pay R5.5 million to a woman who fell victim to a syndicate that hacked her email during a property purchase. Read More

GoDaddy Malware and Source Code Theft

Web hosting services provider GoDaddy on Friday disclosed a multi-year security breach that enabled unknown threat actors to install malware and siphon source code related to some of its services. The threat actor installed malware causing the intermittent redirection of customer websites, the company said. Read More

Children’s Apps Collecting Personal Data

Consumer group Comparitech said its study of more than 400 children’s apps available on the store found that nearly 25% violated the ICO’s guidelines in some way – the vast majority by collecting personal data of some kind. The offending apps violated the ICO’s code in a number of ways. Read More