Phil Muncaster reports: New research has revealed that 14 of the world’s most popular VPN services leak sensitive customer data – in many cases because they don’t yet protect IPv6 traffic. Researchers from Queen Mary University of London (QMUL) and the University of Rome launched the findings in a paper at the Privacy Enhancing Technologies Symposium today….
Category: Commentaries and Analyses
Windows 10 will share your Wi-Fi password with your friends’ friends
Simon Rockman reports: A Windows 10 feature, Wi-Fi Sense, smells like a significant security risk: it shares access to password-protected Wi-Fi networks with the user’s contacts. So giving a wireless password to one person grants access to everyone who knows them. […] Wi-Fi Sense doesn’t reveal the password to your family, friends, acquaintances, and the chap…
One man emailed 97,931 people to tell them their passwords had been stolen
What happens when a do-gooder/altruistic person decides to try to warn people that their password has been stolen and posted on the Internet? Not much, it seems. Mark Stockley reports the results of “Atechdad’s” efforts: Whatever the reason, Atechdad’s 97,931 good intentions were just no match for the yawning, black hole of apathy and cynicism…
UK: Norfolk County Council sells filing cabinet with confidential information still inside
Dan Grimmer reports: New figures have revealed the number of data breaches at local authorities in Norfolk, Suffolk and Cambridgeshire over the past year, with more than 200 incidents where information councils are entrusted with was not handled properly. One of the most shocking blunders came in Norfolk where confidential files containing details of adults…
FBI Cyber Division Bulletin on Tools Reportedly Used by OPM Hackers
Public Intelligence reports: The following bulletin was released to private industry partners June 5, 2015. According to an article from Reuters, one of the remote access tools (RAT) described in the bulletin, called Sakula, is directly linked to the hack of the Office of Personnel Management (OPM) that was disclosed earlier this month. Other publications have directly…
Courts Restrict Ability of Customers and Employees to Sue Companies Following a Data Breach, But Risks of Other Liabilities Remain
Damon W. Silver writes: Among the multitude of unpleasant issues facing a company whose network has been breached is potential liability to customers and employees whose personal information has been compromised. However, recent district court decisions from around the country continue to limit the opportunity of those customers and employees to have their day in…