A reader kindly alerted me to the fact that the city of Tyler had reported a breach. When I looked into it, I see that it’s yet one more report on Click2Gov by Superion. This has been a known problem since last year, so why haven’t municipal governments updated and patched? RiskBasedSecurity had a more…
Category: Commentaries and Analyses
Public IP Addresses of Tor Sites Exposed via SSL Certificates
Lawrence Abrams reports: A security researcher has found a method that can be used to easily identify the public IP addresses of misconfigured dark web servers. While some feel that this researcher is attacking Tor or other similar networks, in reality he is exposing the pitfalls of not knowing how to properly configure a hidden service. One…
More than 85% of China’s app users have had their data leaked: survey
Masha Borak reports: A survey has found that 85.2 % of app users in China have experienced data leaks, according to a report by the China Consumer Association. For the vast majority of them (86.5%), the leaks resulted in receiving harassing calls and messages from sales departments and advertisers, while three quarters complained of getting…
Fortnite fury over how Google handled its security hole
Graham Cluley writes: It feels like only yesterday that we were all talking about how Epic Games was putting Android users at risk by refusing to put its hit game Fortnite into the Google Play store, and instead recommending players disable a security setting to install it. It wasn’t yesterday though. It was about three…
‘IRL’ app could compromise your personal information
Cheri Kiesecker kindly sent along this news item as a warning for readers. Kara Apel reports: A text message that claims you’ve been complimented by a friend can trick you into accessing all of your personal information. Thousands of people across the county, including hundreds here in the Midstate, have been receiving this message. The…
1,464 Western Australian government officials used ‘Password123’ as their password. But don’t smirk.
Taylor Telford reports: Somewhere in Western Australia, a government IT employee is probably laughing or crying or pulling their hair out, or maybe all of the above. A security audit of the Western Australian government released this week by the state’s auditor general found that 26 percent of its officials had weak, common passwords —…