Amazon’s Ring devices reportedly granted the company’s Ukraine-based research and development team as well as U.S. executives and engineers virtually unfettered round the clock access to live feeds from some customer’s cameras, claims which Ring denies. The workers, regardless of whether they needed the information or not, allegedly had access to a folder on Amazon’s…
U.S. mobile carriers T-Mobile, Sprint and AT&T have been sharing customers’ geolocation information with third-party partners, who go on to sell that data to additional companies until it winds up in the hands of unauthorized individuals. Citing anonymous sources, a new exposé from Motherboard focuses heavily on the credit reporting company MicroBilt, which is known to purchase carrier…
The State of California is suing The Weather Company (TWC) for allegedly misleading users about why their extremely precise location data was needed. The lawsuit claims TWC told its users that it collects data to personalize alerts and forecast but in reality, uses the data to profit from the selling of location data to advertisers,…
A report from Israeli news outlet Haaretz has ever so slightly lifted the veil on what may be Israel’s second largest commercial provider of offensive cyber tools and spyware, a clandestine company called Candiru. The candiru is South American parasitic catfish that, according to legend, invades swimmers’ urethras. Much like the fish after which it…
The online privacy and password management firm Abine reported a data breach that exposed users names, emails and portions of their login credentials of those using its Blur product. Blur, which is owned by Abine Inc., became aware on Dec. 13, 2018, that information from users who had registered their accounts with the company before…
A newly released study of 34 prominent Android apps found that roughly 68 percent of them share user data with Facebook even when the device operator isn’t actively logged into the social media service or, for that matter, never created a Facebook account. In such instances, the apps typically communicate to the social media giant…
It was clear it was going to be an intense year the cybersecurity industry when, just days after ringing in 2018, researchers announced a vulnerability found in essentially all CPU processors made over the previous two decades. From there, things only got busier, with news of Russian exploits, new ransomware families and much, much more.…
The developers of make-your-own-avatar app Boomoji reportedly neglected to password-protect two of their internet-connected databases, thus publicly exposing the personal data of roughly 5.3 million users. The wide-open databases, from Elasticsearch, stored users’ names, genders, countries and phone types all in plain text, TechCrunch reported yesterday. Moreover, the databases also contained unique user IDs, each…
Travelers to the Washington D.C., area should avoid visiting the White House if they don’t want their faces captured and logged in a new Secret Service-operated surveillance program. The program, currently just a pilot, will seek to test the agency’s ability to verify the identities of a test population of volunteer USSS employees. “Ultimately, the…
An Adult furry erotica site High Tail Hall suffered a data breach exposing the information of 411,755 fury fans. The breach occurred in August 2018 of site featuring a customizable role playing game video game featuring sexualized animals leaked customer records including mail addresses, names and order histories, according to Have I Been Pwned. Have…
