Friday, 30 July 2021

Estonian Hacker Steals 300,000 Government ID Photos - Security Boulevard

EE ID PII AWOL Redux: Estonia’s electronic ID system was hacked last week. Again. The eastern European country is well-known for its advanced cryptographic identity card system, but it seems there are flaws in the access management design.

Monday, 26 July 2021

Anti-Vax Lies Spread on YouTube—Paid for ‘by Russian PR Company’ - Security Boulevard

Lambs to the Slaughter: Disinformation is rife on social media: No news here. But shadowy interests are paying so-called “influencers” to spread it.

Tuesday, 20 July 2021

Apple’s Insecure iPhone Lets NSO Hack Journalists (Again) - Security Boulevard

Zero-click, Zero-day: Yet another zero-day bug in iOS has allowed notorious spyware vendor NSO Group to break into the iPhones of journalists and activists. Again, it’s an unpatched zero-click vulnerability in the Messages app.

Friday, 16 July 2021

Stalkers: ‘Ugly Truth’ of Facebook Staff Abusing Private Data - Security Boulevard

The Eye of Zuckon: A new book exposes yet another Facebook failure for the social media firm to apologize for. Engineers have been abusing their free access to all users’ data—including data that’s been “deleted.”

Thursday, 15 July 2021

Apple Safari Leaks Cookies, so ‘Russia-Backed’ Hackers Attack Targets - Security Boulevard

iOS WebKit FAIL: Apple’s under fire yet again for an iOS security bug. And yet again it’s a vulnerability in WebKit—the open source code behind the Safari browser.