| |
|
|
| |
|
|
Facebook breach put data of 50 million users at risk
The vulnerability had to do with the social network's "view as" feature.
Facebook on Friday said a breach affected 50 million people on the social network.
The vulnerability stemmed from Facebook's "view as" feature, which lets people see what their profiles look like to other people. Attackers exploited code associated with the feature that allowed them to steal "access tokens" that could be used to take over people's accounts.
While access tokens aren't your password, they allow people to log in to accounts without needing it. As a precautionary measure, Facebook logged about 90 million people out of their accounts, the company said.
The social network said it discovered the attack earlier this week. The company has informed the FBI and the Irish Data Protection Commission. Facebook said the investigation is in the early stages and it doesn't yet know who was behind the attacks. |
|
|
|
| |
|
| There are no conversations. |
| |
|
|
|
|
| Mike Ferguson |
Very few pilots even know how to read Morse code anymore. But if a pilot could read Morse code, he could tell which beacon he was approaching by the code that was flashing from it. |
| Steve Ballmer |
The number one benefit of information technology is that it empowers people to do what they want to do. It lets people be creative. It lets people be productive. It lets people learn things they didn't think they could learn before, and so in a sense it is all about potential. |
| Andrew Card |
The Oval Office symbolizes... the Constitution, the hopes and dreams, and I'm going to say democracy. And when you have a dress code in the Supreme Court and a dress code on the floor of the Senate, floor of the House, I think it's appropriate to have an expectation that there will be a dress code that respects the office of the President. |
| Jacob Hacker |
Even people who feel perfectly comfortable investing in the stock market and owning their own homes often have qualms about individual medical accounts or Social Security private accounts. |
| Brian Acton |
WhatsApp will bring Facebook another billion users. We will be a billion-user product. Whether there is a direct valuation or an indirect valuation, there is value, and Facebook understands that well. |
| Shawn Fanning |
I think it's pretty obvious to most people that Napster is not media specific, but I could see a system like Napster evolving into something that allows users to locate and retrieve different types of data other than just MP3s or audio files. |
| Frank Gaffney |
If the area were on or near the U.S. continental shelf, such data could well provide an enemy with strategically invaluable insights into undersea access routes that could be used to attack some of the millions of Americans who live on or near our coasts. |
| Gaby Hoffmann |
All my cousins steal things. They're just a bunch of thieves. My whole family is like that. You put something down for a second, and they steal it. You never see it again. |
| Miguel de Icaza |
We cannot choose one desktop over the other - Gnome or KDE - because there's users for both code bases. |
| Robert Cailliau |
The Web is actually a coming together of three technologies, if you like: the hypertext, the personal computer, and the network. So, the network we had, and the personal computers were there, but people didn't use them, because they didn't know what to use them for, except maybe for a few games. |
|
|
|
|
Hackers Claim They Possess Details of 120 Million Facebook Accounts, Publish Private Messages From 81,000 of Them (bbc.com)
Hackers appear to have compromised and published private messages from at least 81,000 Facebook users' accounts. The perpetrators told the BBC Russian Service that they had details from a total of 120 million accounts, which they were attempting to sell, although there are reasons to be sceptical about that figure. Facebook said its security had not been compromised. And the data had probably been obtained through malicious browser extensions.
Facebook added it had tak...
|
| |
|
|
|
Intel was aware of the chip vulnerability when its CEO sold off $24 million in company stock
Intel CEO Brian Krzanich sold off $24 million worth of stock and options in the company in late November.
The stock sale came after Google had informed Intel of a significant vulnerability in its chips — a flaw that became public only this week.
Intel says the stock sale was unrelated to the vulnerabil...
|
| |
|
|
|
Facebook Is Giving Advertisers Access To Your Shadow Contact Information
Last week, I ran an ad on Facebook targeted at a computer science professor named Alan Mislove. Mislove studies how privacy works on social networks and had a theory that Facebook is letting advertisers reach users with contact information collected in surprising ways. I was helping him test the theory by targeting him in a way Facebook had previously told me wouldn't work. I directed the ad to display to a Facebook account connected to the landline number for Alan Mislove's office, a number Mislove has never provided to Facebook. He saw the ad within hours.
...
|
| |
|
|
|
Hacker Steals $30 Million Worth of Ethereum From Parity Multi-Sig Wallets
An unknown hacker has used a vulnerability in an Ethereum wallet client to steal over 153,000 Ether, worth over $30 million dollars. The hack was possible due to a flaw in the Parity Ethereum client. The vulnerability allowed the hacker to exfiltrate funds from multi-sig wallets created with Parity clients 1.5 and later. Parity 1.5 was released on January 19, 2017. The attack took place around 19:00-20:00 UTC and was immediately spotted by Parity, a company founded by Gavin Wood, Ethereum's founder. The company issued a security alert on its blog. The Ether stolen from Parity multi-sig accounts was transferred into this Ethereum wallet, currently holding 153,017.021336727 Ether. Because Parity spotted the attack i...
|
| |
|
|
|
How Facebook Figures Out Everyone You've Ever Met
"I deleted Facebook after it recommended as People You May Know a man who was defense counsel on one of my cases. We had only communicated through my work email, which is not connected to my Facebook, which convinced me Facebook was scanning my work email," an attorney told Gizmodo. Kashmir Hill, a reporter at the news outlet, who recently documented how Facebook figured out a connection between her and a family member she did not know existed, shares several more instances others have reported and explains how Facebook gathers information. She reports:
Behind the Facebook profile you've built for yourself is another one, a shadow profile,...
|
| |
|
|
|
Facebook Filed a Patent To Calculate Your Future Location
Facebook has filed several patent applications with the U.S. Patent and Trademark Office for technology that uses your location data to predict where you're going and when you're going to be offline. BuzzFeed News reports:
A May 30, 2017, Facebook application titled "Offline Trajectories" describes a method to predict where you'll go next based on your location data. The technology described in the patent would calculate a "transition probability based at least in part on previously logged location data associated with a plurality of users who were at the current location." In other words, the technology could also use the data of ...
|
| |
|
|
|
A Mysterious Grey-Hat Is Patching People's Outdated MikroTik Routers
A Russian-speaking grey-hat hacker is breaking into people's MikroTik routers and patching devices so they can't be abused by cryptojackers, botnet herders, or other cyber-criminals, ZDNet has learned. The hacker, who goes by the name of Alexey and says he works as a server administrator, claims to have disinfected over 100,000 MikroTik routers already. "I added firewall rules that blocked access to the router from outside the local network," Alexey said. "In the comments, I wrote information about the vulnerability and left the address of the @router_os Telegram channel, where it was possible for them to ask questions." But despite adjusting firewall settings for over 100,000 users, Alexey says that only 50 users reach...
|
| |
|
|
|
One Year After Data Breach, Equifax Goes Unpunished
"It's been a year since Equifax doxed the nation of America through carelessness, deception and greed, lying about it and stalling while the problem got worse and worse," writes Cory Doctorow. Equifax's new CSO says they've spent over $200 million on security upgrades, in work being overseen by auditor from eight different states. An anonymous reader quotes Doctorow's response:
This all sounds very good and all, but it's still monumentally unfair. The penalty for Equifax's recklessness should have been the corporate death penalty: charter revoked, company shut down, assets sold to competitors... The fact that Equifax's investors and exec...
|
| |
|
|
|
|
I can't tell if some people are incapable of considering other people's feelings and point of view or if they just don't care enough to try.
|
| |
|
|
|
Intel CEO Brian Krzanich sold off a large portion of his stake in the company months after Google had informed the chipmaker of a significant security vulnerability in its flagship PC processors — but before the problem was publicly known.
The vulnerability, which affects processors from Intel, AMD, and ARM and could allow malicious actors to steal passwords and other secret data, became public this week. The disclosure has left processor makers and operating-system vendors including Intel and Microsoft scrambling to get on top of the story and patch their products.
But while the public is just...
This post is a comment.
|
| |