Two security researchers have uncovered four billion records on 1.2 billion people on an unsecured Elasticsearch server impacting what is estimated to be hundreds of millions of people. The data itself comes from the data aggregator and enrichment companies People Data Labs (PDL) and OxyData.Io and contains basic personal information, such as names, home and…
SC Media is honored to present the thought leading professionals, innovative companies and powerful products and services named as finalists for the 2020 SC Awards. The SC Media team welcomes all of the finalists to join us in San Francisco on February 25 at the InterContinental Hotel for SC’s Awards Gala ceremony during which winners will be…
A security research firm has been tracking a botnet that first popped onto its radar back in August that for some reason declines to make use of its DDos capabilities. The first bit of evidence found on the Roboto botnet was when the 360 Netlab team detected a suspicious ELF file in August and then…
Microsoft’s security team defended its Teams communication platform saying it has found no connection between the app and the distribution of Dopplepaymer ransomware. Simon Pope, director of incident response at the Microsoft Security Response Center, went to bat for Teams saying he wanted to squelch any rumors that link the spread of Doppelpaymer to the Microsoft…
Recently, Andrew Smith, Director of the FTC’s Bureau of Consumer Protection stated that one of its priorities would be to “combat bad practices in the lead generation market.” 33 Antitrust ABA 75, 76 (Spring 2019). Smith suggested the FTC was concerned about the entire ecosystem’s bad practices. He echoed his remarks during Comply 2019, an…
A vulnerability in the Google Camera Application left millions of Google and Samsung smartphones open to being potentially abused potentially letting a malicious actor to take photos, download images and video and listen in to phone calls. The flaw, CVE-2019-2234, is a permission bypass issue that enables real-time access to a phone through the camera…
Intezer Security has found a new backdoor, ACBackdoor, that has no known connection to an operating threat group creating the possibility it could be a harbinger of a new gang’s formation. ACBackdoor is primarily a Linux malware, but Intezer has spotted a Windows variant and the company believes it was created by an experienced group…
History will be made on April 1, 2020. For the first time, the United States Census will offer a full internet response option, in addition to traditional paper responses. The digitization of the census is meant to address the challenges of counting an increasingly large and diverse population, while also complying with strict cost constraints…
The huge marketing campaign behind the launch of Disney’s new streaming service and the massive response it elicited from consumers was too much of a temptation for cybercriminals as they flocked to decipher and then resell the user accounts. An investigation by ZD Net found the brand-new user Disney+ accounts being hawked for between $3…
About 1,800 people, including 500 Fairfax, Va., county police department employees, had their PII possibly exposed when a USB drive carrying the information went missing. The USB drive containing the full names, birth dates and Social Security numbers for the Fairfax police officers and other employees belonged to Police Chief Cynthia McAlister, who heads the…
