Italy's antitrust watchdog said it was imposing a 3 million-euro fine on messaging service WhatsApp for allegedly obliging users to agree to sharing their personal data with its parent company Facebook.
All 28 European Union data protection authorities asked WhatsApp last year to stop sharing users' data with Facebook due to doubts over the validity of users' consent. The Italian agency said the application led users to believe they would not have been able to continue using the service unless they agreed to terms including sharing personal data. A spokesperson for WhatsApp said: "We're reviewing the decision and we look forward to responding to officials."Read more
A digital worm powered by stolen National Security Agency software caused $1 billion in damages when it infected hundreds of thousands of computers in less than a week, a Florida digital security company says. And new attacks may be in the offing.
Hackers unleashed the worm, dubbed WannaCry, on May 12. Some 200,000 to 300,000 computers were affected in at least 150 countries. “The estimated damage caused by WannaCry in just the initial four days would exceed $1 billion, looking at the massive downtime caused for large organizations worldwide,” Stu Sjouwerman, chief executive at KnowBe4, a Clearwater, Florida, firm that helps firms avoid phishing efforts.Read more
Google is planning to track billions of credit and debit card sales to compare online ad clicks with money spent offline. Google Attribution will allow advertisers to see whether online ad campaigns generate offline sales. Announcing the service, Google said that it captures around 70% of credit and debit card transactions in the US.
Critics said it represented another blow to privacy. Google announced the new product in a blogpost, saying: "For the first time, Google Attribution makes it possible for every marketer to measure the impact of their marketing across devices and cross-channel - all in one place."Read more
Watching a film with subtitles this week? It might contain a nasty surprise that leaves your PC or TV under the control of cybercriminals, researchers warned. They found a way to insert malicious code into subtitle files used by popular media players.
As soon as the player parses those evil files before displaying the actual subtitles on the screen, the attacker is granted control of the computers and TVs on which they ran. And, as such subtitles are typically downloaded automatically from online repositories that can be gamed, hackers can easily force media players to download their malicious subtitles rather than legitimate ones, the researchers discovered.Read more
Based on name alone, the futuristic iris-scanning feature on the Galaxy S8 sounds like it would be the most secure way to lock your phone. Hacker Jan Krissler, who goes by the name Starbug, shows in a recent video that, despite the impressive technology in unlocking your phone with your eyes, the security system can be beaten with a relatively low-tech hack.
As the video shows, Starbug is able to take a infrared picture of a person’s face using the night mode setting on a regular point and shoot camera. Print it out on an ordinary laser printer and it fools the camera by placing a contact lens over the image to give it the appearance of an actual human eye.Read more
If the NSA's leaked hacking tools had a Voltron, it would be EternalRocks. On Sunday, researchers confirmed new malware, named EternalRocks, that uses seven exploits first discovered by the National Security Agency and leaked in April by the Shadow Brokers group. Experts described the malware as a "doomsday" worm that could strike suddenly.
Earlier this month, the WannaCry ransomware plagued hospitals, schools and offices around the world and spread to more than 300,000 computers. It uses two NSA exploits that were leaked by the Shadow Brokers, EternalBlue and DoublePulsar.Read more
Instagram is rated as the worst social media platform when it comes to its impact on young people's mental health, a UK snapshot survey suggests.
The poll asked 1,479 people aged 14-24 to score popular apps on issues such as anxiety, depression, loneliness, bullying and body image. Instagram said keeping the platform a safe and supportive place for young people was a top priority. Mental health charities urged companies to act to increase users' safety. The Royal Society for Public Health study says social platforms should flag up heavy social media use and identify users with mental health issues.Read more
Netgear has added an unwelcome guest in the newest firmware update for its popular upscale Nighthawk R7000 router. It's collecting and uploading user data.
After being dogged by some firmware glitches last year, Netgear has taken the decision to keep an eye on what its high-end router is doing, including IP and MAC addresses of your activity. A support page entry explains: "Technical data about the functioning and use of our routers and their WiFi network can help us to more quickly isolate and debug general technical issues, improve router features and functionality, and improve the performance and usability of our routers.Read more
The majority of machines hit by the WannaCry ransomware worm in the cyber-attack earlier this month were running Windows 7, security firms suggest. More than 97% of the infections seen by Kaspersky Lab and 66% of those seen by BitSight used the older software.
WannaCry started spreading in mid-May and, so far, has infected more than 200,000 computers around the world. In the UK, some hospitals had to turn away patients as the worm shut down computer systems. Many suggested that the reason UK hospitals suffered was because many of them still relied on programmes that required Windows XP - a version of Microsoft's OS that debuted in 2001.Read more
The hacking group that says data they released facilitated the WannaCry ransomware attack has threatened to leak a new wave of hacking tools they claim to have stolen from the US National Security Agency.
The so-called Shadow Brokers, who claimed responsibility for releasing NSA tools that were used to spread the WannaCry ransomware through the NHS and across the world, said they have a new suite of tools and vulnerabilities in newer software. The possible targets include Microsoft’s Windows 10, which was unaffected by the initial attack and is on at least 500m devices around the world.Read more