Deep pockets are huge targets.
https://www.techradar.com/news/this-could-be-the-most-expensive-data-breach-ever
This could be the most expensive data breach ever
JM Bullion, which sells gold, silver, copper, platinum and palladium, became the victim of a cyberattack back in February that was not discovered until July. It remains unclear why the hack is only just being disclosed publicly.
This type of attack is known as MageCart and works by placing lines of malicious JavaScript code into a website. Then, when an individual enters payment information, the code diverts it to an external server operated by the hacker.
… “Through an investigation, it was determined that malicious code was present on the website from February 18, 2020 to July 17, 2020, which had the ability to capture customer information entered into the website in limited scenarios while making a purchase.”
Again, for my Ethical Hackers.
Cyberlaw Clinic and EFF publish Guide to Legal Risks of Security Research
Cyberlaw Clinic: “We are excited to announce the release of A Researcher’s Guide to Some Legal Risks of Security Research (pdf), a report authored by Sunoo Park and Kendra Albert, and co-published by the Cyberlaw Clinic and the Electronic Frontier Foundation (EFF). Just last month, over 75 prominent security researchers signed a letter urging the Supreme Court not to interpret the Computer Fraud and Abuse Act (CFAA), the federal anti-hacking / computer crime statute, in a way that would criminalize swaths of valuable security research. The case in question, Van Buren v. United States, is still pending. Meanwhile, security researchers routinely face legal risks and receive legal threats, with documented chilling effects on their work. This harms security research, which in turn harms the security of the technologies on which we all increasingly rely. Such risk extends beyond anti-hacking laws, implicating copyright law and anti-circumvention provisions (DMCA §1201), electronic privacy law (ECPA), and cryptography export controls, as well as broader legal areas such as contract and trade secret law. Our Guide gives the most comprehensive presentation to date of this landscape of legal risks, with an eye to both legal and technical nuance. Aimed at researchers, the public, and technology lawyers alike, its aims both to provide pragmatic guidance to those navigating today’s uncertain legal landscape, and to provoke public debate towards future reform…”
Your face on a body camera or other video is like leaving fingerprints behind, but not in this case. Police found a face on Twitter and “identified” it before running it through the system. (Or is the article wrong?)
Facial recognition used to identify Lafayette Square protester accused of assault
A line of U.S. Park Police officers pushed protesters back from Lafayette Square on June 1, firing pepper balls and rolling canisters spewing irritant gas into the retreating crowds on H Street NW, video shows.
Amid screams and smoke, a man in a tie-dye T-shirt pulled an officer to the ground and punched him in the face, before disappearing into the chaos, according to charging documents.
The man grabbed another officer, before police caught up with him and attempted to make an arrest, authorities said. But the man wrestled free and vanished once again.
The protester might never have been identified, but an officer found an image of the man on Twitter and investigators fed it into a facial recognition system, court documents state. They found a match and made an arrest.
The court documents are believed to be the first public acknowledgment that authorities used the controversial technology in connection with the widely criticized sweep of largely peaceful protesters ahead of a photo op by President Trump.
Executive orders are not magic wands…
https://www.makeuseof.com/tiktok-dodges-us-ban-again/
TikTok Dodges a US Ban Once Again
… TikTok was supposed to be officially removed from US app stores on September 20th, however, a federal judge delayed the ban. Even still, that judge's ruling didn't block the other portion of Trump's executive order that would stop all use of TikTok starting November 12th.
In response to the potential November 12th ban, three TikTok influencers filed a lawsuit against the Trump administration. The influencers cited that a TikTok ban would hurt their ability to earn a living. The influencers who filed the suit, Cosette Rinab, Douglas Marland, and Alec Chambers each have millions of followers on TikTok.
Best election forecasting site. (If you can’t stand the suspense.)
https://projects.fivethirtyeight.com/2020-election-forecast/
Freebie.
https://www.infoq.com/articles/book-review-accelerating-software-quality/
Q&A on the Book Accelerating Software Quality
The book Accelerating Software Quality by Eran Kinsbruner explores how we can combine techniques from artificial intelligence and machine learning with a DevOps approach to increase testing effectiveness and deliver higher quality. It provides examples and recommendations for using AI/ML-based solutions in software development and operations.
InfoQ readers can download a sample of Advancing Software Quality.
No comments:
Post a Comment