Tech

23andMe failed to detect account compromise for months


Police used DNA evidence to produce a digital rendering of the suspect’s face and Running it through facial recognition in a disturbing incident Wired first reported on the strategy this week. The tactic was revealed in a trove of hacked police records released by transparency group Decentralized Denial Secrets.Meanwhile, information about U.S. intelligence agencies Americans buy cell phone location data and internet metadata without authorization This week, U.S. Senator Ron Wyden blocked the appointment of a new director of the National Security Agency until the information is made public. A California teen allegedly used the account. Toswat man who carried out hundreds of beatings across the US is extradited to Florida to face felony charges.

notorious spyware developer NSO Group, the creators of the Pegasus spyware, have been quietly planning a comeback, which involves investing millions of dollars in lobbying in Washington while using the Israel-Hamas war to stoke global security concerns and position its products as essential goods.The Microsoft and Hewlett Packard Enterprise breaches disclosed in recent days have Puts the espionage activities of the famous Russian-backed hacker group Midnight Blizzard back into the spotlight.and Amazon-owned Ring said this week it would shut down a feature of its controversial Neighbors app This allows law enforcement to obtain a user’s footage for free without a search warrant.

Wired takes a deep dive into Israeli-linked hacker groups this week Predatory Sparrow and its particularly aggressive offensive cyber attacks, particularly against Iranian targets, which included destroying thousands of gas stations and setting a steel plant on fire.With so much going on, we’ve got the perfect quick weekend project for iOS users who want to feel more digitally secure: Make sure you’ve upgraded your iPhone to iOS 17.3, and then Turn on Apple’s new stolen device protection featurewhich can stop thieves from taking over your account.

there are more. Each week, we highlight news that we don’t cover in depth ourselves. Click on the title below to read the full story. and stay safe.

after the first time Breaches revealed in Octoberancestry and genetics company 23andMe said in December that from 6.9 million users affected During the incident, attackers compromised approximately 14,000 user accounts. Attackers could then use those accounts to access information that users voluntarily shared in the company’s social feature called DNA Kinship. 23andMe blames users for account hacksaid this happens simply because victims set weak passwords on their accounts or reuse passwords. National mandatory filing Information about the incident in California shows that attackers began compromising customers’ accounts in April and continued through much of September, without the company ever detecting suspicious activity and attempts to guess and brute force users’ passwords.

A senior official at South Korea’s National Intelligence Service, who spoke on condition of anonymity, said on Wednesday that North Korea has been using generative artificial intelligence tools “to find hacking targets and find the technology needed for hacking.” Pyongyang has not yet begun integrating generative artificial intelligence into proactive hacking operations, but South Korean officials are watching developments closely.More broadly, the researchers say they are Alarmed by North Korea’s development and use of artificial intelligence tools for multiple applications.

The digital advertising industry is notorious for spying on and tracking users online. New findings from 404 Media highlight a particularly insidious service, Patternz, which pulls advertising data from hundreds of thousands of popular mainstream apps, reportedly powering advertising around the world. Surveillance dragnet. The tool and its visibility have been marketed to governments around the world to integrate with other intelligence agencies’ surveillance capabilities. “The pipeline involves smaller, obscure ad companies as well as advertising giants like Google. In response to inquiries from 404 Media, another Google ad company, PubMatic, has cut ties with the monitoring company,” 404’s Joseph Cox wrote.

Researchers at MIT’s Computer Science and Artificial Intelligence Laboratory have designed an algorithm that can be used to convert data from a smart device’s ambient light sensor into an image of the scene in front of the device. Such tools can be used to transform smart devices into smart devices. Turn your home gadget or mobile device into a surveillance tool. The ambient light sensor measures the light in the environment and automatically adjusts the brightness of the screen to make it more usable in different conditions. But because ambient light data is not considered sensitive, these sensors automatically have certain permissions in the operating system and often do not require specific approval from the user to be used by applications. As a result, the researchers note, bad actors could potentially misuse the readings from these sensors without users having to resort to blocking the flow of information.



Source link

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button