A free VPN app called Big Mama is selling access to people’s home internet networks. Kids are using it to cheat in a VR game while researchers warn of bigger security risks.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-19 11:06:442024-12-19 11:06:44This VPN Lets Anyone Use Your Internet Connection. What Could Go Wrong?
The Dutch Data Protection Authority (DPA) on Wednesday fined video on-demand streaming service Netflix €4.75 million ($4.93 million) for not giving consumers enough information about how it used their data between 2018 and 2020.
An investigation launched by the DPA in 2019 found that the tech giant did not inform customers clearly enough in its privacy statement about what it does with the data
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-19 10:06:462024-12-19 10:06:46Dutch DPA Fines Netflix €4.75 Million for GDPR Violations Over Data Transparency
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued Binding Operational Directive (BOD) 25-01, ordering federal civilian agencies to secure their cloud environments and abide by Secure Cloud Business Applications (SCuBA) secure configuration baselines.
“Recent cybersecurity incidents highlight the significant risks posed by misconfigurations and weak security controls,
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-19 10:06:452024-12-19 10:06:45CISA Mandates Cloud Security for Federal Agencies by 2025 Under Binding Directive 25-01
The draft of the long-awaited update to the NCIRP outlines the efforts, mechanisms, involved parties, and decisions the US government will use in response to a large-scale cyber incident.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-19 07:06:562024-12-19 07:06:56CISA Releases Draft of National Cyber Incident Response Plan
The number of DDoS-related incidents targeting APIs have jumped by 30x compared with traditional Web assets, suggesting that attackers see the growing API landscape as the more attractive target.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-19 04:07:252024-12-19 04:07:25India Sees Surge in API Attacks, Especially in Banking, Utilities
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-18 23:07:162024-12-18 23:07:16Biggest Crypto Scam Tactics in 2024 and How to Avoid Them
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-18 22:06:572024-12-18 22:06:57Slack is becoming an AI workplace: Here’s what that means for your job
The National Defense Authorization Act passed today, but lawmakers stripped language that would keep the Trump administration from wielding unprecedented authority to surveil Americans.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-18 21:07:172024-12-18 21:07:17Congress Again Fails to Limit Scope of Spy Powers in New Defense Bill
A 5-page advisory provided troves of guidance for both Apple and Android users, urging all “highly targeted individuals” to rely on the “consistent use of end-to-end encryption.”
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-12-18 21:07:162024-12-18 21:07:16CISA urges senior government officials to lock down mobile devices amid ongoing Salt Typhoon breach
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Juniper Warns of Mirai Botnet Targeting Session Smart Routers
/in General NewsJuniper Networks says a Mirai botnet is ensnaring session smart router devices that are using default passwords.
The post Juniper Warns of Mirai Botnet Targeting Session Smart Routers appeared first on SecurityWeek.
SecurityWeek – Read More
This VPN Lets Anyone Use Your Internet Connection. What Could Go Wrong?
/in General NewsA free VPN app called Big Mama is selling access to people’s home internet networks. Kids are using it to cheat in a VR game while researchers warn of bigger security risks.
Security Latest – Read More
Dutch DPA Fines Netflix €4.75 Million for GDPR Violations Over Data Transparency
/in General NewsThe Dutch Data Protection Authority (DPA) on Wednesday fined video on-demand streaming service Netflix €4.75 million ($4.93 million) for not giving consumers enough information about how it used their data between 2018 and 2020.
An investigation launched by the DPA in 2019 found that the tech giant did not inform customers clearly enough in its privacy statement about what it does with the data
The Hacker News – Read More
CISA Mandates Cloud Security for Federal Agencies by 2025 Under Binding Directive 25-01
/in General NewsThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued Binding Operational Directive (BOD) 25-01, ordering federal civilian agencies to secure their cloud environments and abide by Secure Cloud Business Applications (SCuBA) secure configuration baselines.
“Recent cybersecurity incidents highlight the significant risks posed by misconfigurations and weak security controls,
The Hacker News – Read More
CISA Releases Draft of National Cyber Incident Response Plan
/in General NewsThe draft of the long-awaited update to the NCIRP outlines the efforts, mechanisms, involved parties, and decisions the US government will use in response to a large-scale cyber incident.
darkreading – Read More
India Sees Surge in API Attacks, Especially in Banking, Utilities
/in General NewsThe number of DDoS-related incidents targeting APIs have jumped by 30x compared with traditional Web assets, suggesting that attackers see the growing API landscape as the more attractive target.
darkreading – Read More
Biggest Crypto Scam Tactics in 2024 and How to Avoid Them
/in General NewsStay alert to crypto scams with our guide to 2024’s top threats, including phishing, malware, Ponzi schemes, and…
Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – Read More
Slack is becoming an AI workplace: Here’s what that means for your job
/in General NewsSlack is evolving from a simple messaging app into an AI-powered workplace platform where digital agents work alongside humans.Read More
Security News | VentureBeat – Read More
Congress Again Fails to Limit Scope of Spy Powers in New Defense Bill
/in General NewsThe National Defense Authorization Act passed today, but lawmakers stripped language that would keep the Trump administration from wielding unprecedented authority to surveil Americans.
Security Latest – Read More
CISA urges senior government officials to lock down mobile devices amid ongoing Salt Typhoon breach
/in General NewsA 5-page advisory provided troves of guidance for both Apple and Android users, urging all “highly targeted individuals” to rely on the “consistent use of end-to-end encryption.”
The Record from Recorded Future News – Read More