Ignorance (real or fake) is not bliss.
A Month
After 2 Million Customer Cards Sold Online, Buca di Beppo Parent
Admits Breach
On Feb. 21, 2019, KrebsOnSecurity contacted
Italian restaurant chain Buca
di Beppo after discovering strong evidence that two
million credit and debit card numbers belonging to the company’s
customers were being sold in the cybercrime underground. Today,
Buca’s parent firm announced it had remediated a 10-month breach of
its payment systems at dozens of restaurants, including some
locations of its other brands such as Earl
of Sandwich and
Planet Hollywood.
In a statement posted to its Web site today,
Orlando, Fla. based hospitality firm Earl
Enterprises
said a data breach involving malware installed on its
point-of-sale systems allowed cyber thieves to steal card details
from customers between May
23, 2018 and March 18, 2019.
Earl Enterprises did not respond to requests for
specifics about how many customers total may have been impacted by
the 10-month breach. The company’s statement directs concerned
customers to
an online tool that allows one to look up breached locations by
city and state.
Coming soon, to a country near me.
… Unlike the 2016 interference in the United
States, which centered on fake Facebook pages created by Russians in
faraway St. Petersburg, the operation in Ukraine this year had a
clever twist. It tried to circumvent Facebook’s new safeguards by
paying Ukrainian citizens to give a Russian agent access to their
personal pages.
In a video confession published by the S.B.U.,
Ukraine’s domestic intelligence service, a man it identified as the
Russian agent said that he resided in Kiev, Ukraine’s capital, and
that his Russian handlers had ordered him “to find people in
Ukraine on Facebook who wanted to sell their accounts or temporarily
rent them out.”
(Related) All US elections are like that, we just
don’t get the joke until after the election.
Eager for
change, these Ukrainian voters back a comedian for president.
Seriously
… Instead of traditional campaigning,
Zelensky, an entertainer by trade, has been crisscrossing Ukraine
with his variety show, “Kvartal 95.” Zelensky’s act doesn’t
directly appeal for votes, but it mocks today’s politicians and
hints at a candidate intent on doing things differently than the
league of politicians who are the butt of most of his jokes.
Data capture for self-defense? A “selfie
witness” for self-driving?
Tesla cars
keep more data than you think, including this video of a crash that
totaled a Model 3
If you crash your Tesla, when it goes to the junk
yard, it could carry a bunch of your history with it.
That’s because the computers on Tesla
vehicles keep everything that drivers have voluntarily stored on
their cars, plus tons of other information generated by the vehicles
including video, location and navigational data showing exactly what
happened leading up to a crash, according to two security
researchers.
… Many other cars download and store data from
users, particularly information from paired cellphones, such as
contact information. The practice is widespread enough that the US
Federal Trade Commission has issued advisories to drivers warning
them about pairing devices to rental
cars, and urging them to learn how to wipe
their cars’ systems clean before returning a rental or selling
a car they owned.
But the researchers’ findings highlight how
Tesla is full of contradictions on privacy and cybersecurity. On one
hand, Tesla holds car-generated
data closely, and has fought customers in court to
refrain from giving up vehicle data. Owners
must purchase $995 cables and download a software kit from Tesla to
get limited information out of their cars via “event data
recorders” there, should they need this for legal, insurance or
other reasons.
At the same time, crashed Teslas that are sent to
salvage can yield unencrypted and personally revealing data to anyone
who takes possession of the car’s computer and knows how to extract
it.
Over censoring?
Where to
Draw the Line on Deplatforming
Facebook and
YouTube were right to delete the video shot by the New Zealand
shooter. Internet providers were wrong to try to do it, too.
“We just got these things to work (most of the
time) and now you want to ban them?”
UK, US and
Russia among those opposing killer robot ban
… Delegates have been meeting at the UN in
Geneva all week to discuss potential restrictions under international
law to so-called lethal autonomous weapons systems, which use
artificial intelligence to help decide when and who to kill.
Most states taking part – and particularly those
from the global south – support either a total ban or strict legal
regulation governing their development and deployment, a position
backed by the UN secretary general, António Guterres, who has
described machines empowered to kill as “morally repugnant”.
But the UK is among a group of states –
including Australia, Israel, Russia and the US – speaking
forcefully against legal regulation. As discussions operate on a
consensus basis, their objections are preventing any progress on
regulation.
Fuel for our ongoing discussion of self-driving
vehicles.
Daimler
Trucks buys a majority stake in self-driving tech company Torc
Robotics
Daimler Trucks
just announced that it’s acquiring a majority stake in Torc
Robotics, a deal that will see the two companies collaborating on
the development of Level 4 self-driving trucks.
… Martin Daum, the member of Daimler’s board
of management responsible for trucks and buses, had a statement
praising the partnership as providing “the ideal combination
between Torc’s expertise on agile
software development [Any
relation to successful self-driving software? Bob] and
our experience in delivering reliable and safe truck hardware.”
… “With the ever rising demand for road
transportation, not the
least through e-commerce, there is a strong business case
for self-driving trucks in the U.S. market and I believe the fastest
path to commercialization for self-driving trucks is in partnership
with Daimler Trucks, the OEM market leader,” said Torc CEO Michael
Fleming in a statement.