Latest news from Naked Security (2019/07/31)

iMessage bug could have allowed attackers to read data from any iPhone

Google’s Project Zero has unveiled details of a bug in Apple’s iMessage that lets attackers read data from an iPhone without any user interaction.

Georgia hit with malware yet again

The Department of Public Safety says it won’t pay, but given the umpteen times the state’s agencies have been hit, somebody’s not listening.

Cyberattacks on connected cars could gridlock entire cities

It would require taking over and stranding 20% of a city’s cars to freeze traffic, and only 10% to impede ambulances, physicists calculate.

Capital One breach – 100 million users’ data stolen

Global financial services company Capital One has just announced a massive data breach.

Latest news from Naked Security (2019/07/30)

Hackers target Telegram accounts through voicemail backdoor

As politicians should know by now, secure messaging apps such as Telegram can quickly become a double-edged sword.

Listening in: Humans hear the private info Siri accidentally records

Apple Watch and HomePod have the highest rate of inadvertent recordings, a whistleblower says.

US chases fraudulent bitcoin exchange BTC-e for $100m

Two years ago, the US government fined an international cybercriminal and his fraudulent bitcoin exchange over $100m. Now, it’s going after them for the money.

Post-Equifax settlement, NY updates data breach notification laws

Equifax is fined $675 million, while New York data breach notification law now covers biometrics, passwords, and more.

Latest news from Naked Security (2019/07/29)

NAS vendors hit by brute force ransomware attacks

Cybercriminals are targeting numerous Network Attached Storage vendors with a new wave of ransomware.

Three quarters of gamers suffer hate and harassment online

Trolling, stalking, sexual harassment, and humiliation have become so bad that one in ten respondents had depressive or suicidal thoughts.

Russia targeted all 50 states in 2016 election, Senate report says

The Senate Intelligence Committee doesn’t know what Moscow’s intentions are, but Robert Mueller says they’re still at it.

Monday review – the hot 21 stories of the week

From iOS 13’s password hole to logic bombs courtesy of the programmer from hell – and everything in between. It’s weekly roundup time.

Ransomware hits Louisiana schools; state of emergency declared

The Louisiana Governor declared a state of emergency after three public school districts were seized by ransomware.

WannaCry hero avoids prison

Marcus Hutchins, known as @MalwareTechBlog on Twitter, has been spared jail over malware charges. British-born Hutchins, who was credited with creating a “kill switch” for WannaCry, was arrested in 2017 in Las Vegas after attending DEF CON. He has remained in the US on bail ever since. Back in April, he pleaded guilty to two […]