Facebook did not have a good week last week and details are still coming. At the start of the week, Facebook users found that Facebook uses "shadow contact information" from 2-factor authentication and friends phonebooks to target advertisements to users. Later in the week, Facebook announced that at least 50 million users accounts were compromised through a series of … [Read more...]
T-Mobile Notifies Its Customers of A Security Breach
T-Mobile is having a rough year. Back in May, security researchers discovered an open API that could allow attackers to siphon off sensitive customer information. Now, just a few weeks ago, T-Mobile disclosed that that on August 20th their security team found unauthorized users retrieving data from T-Mobile servers. At this time, they believe over 2 million accounts were … [Read more...]
Advanced Cyber Attacks and Cyber Defenses
With time and devotion, just about anything that’s conceptually realistic can come to fruition. This is how innovation and advancements take place. Start with an idea, then explore and expand on it – note that creativity is required. Eventually time and resources invested can pay off. This is true for perspectives from both good and bad stances. Good things tend to yield good … [Read more...]
Teen Steals Apple’s Keys
A teen in Melbourne, Australia was able to hack into Apple’s networks and retrieve over 90 GB of data in the course of a year. Investigators found “authorized keys,” likely private authentication keys, on the teen’s computer. He used VPNs to gain access to Apple servers to download this data which he saved in a folder conveniently named "hacky hack hack." After gaining access … [Read more...]
Foreshadow, the Latest Intel-Specific Vulnerability
Intel’s Core and Xeon line of processors are prone to another major speculative execution flaw named “Foreshadow,” alternatively called L1 Terminal Fault or L1TF. This attack could allow attackers to gain access to sensitive data stored in a computer’s memory or 3rdparty Clouds, which includes files, encryption keys, pictures, or even passwords. Speculative execution refers to … [Read more...]
