Taylor Telford reports: Somewhere in Western Australia, a government IT employee is probably laughing or crying or pulling their hair out, or maybe all of the above. A security audit of the Western Australian government released this week by the state’s auditor general found that 26 percent of its officials had weak, common passwords —…
Apple removed Facebook’s Onavo from the App Store for gathering app data
Taylor Hatmaker reports: If you were on the edge of your seat wondering what Facebook’s next major consumer privacy headache would be, the wait is over! The Wall Street Journal reports that Apple has deemed Facebook-owned app Onavo in violation of its App Store policies and will be giving it the boot shortly. In a…
Spyware Company Leaves ‘Terabytes’ of Selfies, Text Messages, and Location Data Exposed Online
Lorenzo Franceschi-Bicchierai reports: A company that markets cell phone spyware to parents and employers left the data of thousands of its customers—and the information of the people they were monitoring—unprotected online. The data exposed included selfies, text messages, audio recordings, contacts, location, hashed passwords and logins, Facebook messages, among others, according to a security researcher…
Babysitting app suffers ‘temporary data breach’ of 93,000 users
John E. Dunn reports: Babysitting-booking app Sitter “temporarily” exposed the personal data of 93,000 account holders, according to a researcher who recently discovered the trove of data using the Shodan Internet of Things (IoT) search engine. In a LinkedIn post, Bob Diachenko explains how he found the 2GB MongoDB database on August 13, which contained…
T-Mobile experienced a data breach on August 20th
Update: About 2 million customers are reportedly affected. Alex Wagner reports: T-Mobile today confirmed that it was affected by a security breach. T-Mobile says that on August 20th, it discovered a security breach that affected the accounts of some customers. The malicious party did not get access to any financial data, social security numbers, or…
Darden reports possible data breach of 567,000 payment card numbers at Cheddar’s Scratch Kitchen restaurants
Reuters reports: Darden Restaurants Inc said on Wednesday it was recently notified by federal authorities that guest data from certain of its Cheddar’s Scratch Kitchen restaurants may have been compromised in a cyber attack incident. The Olive Garden owner said its systems and networks were unaffected by the incident, as the breach occurred on a…