The Register – Ex-Microsoft dev used test account to swipe $10m in tech giant’s own store credits, live life of luxury, Feds allege
“‘No safeguards’ on QA accounts, and suddenly this guy gets a Tesla and $1.6m home, say prosecutors”
Franklin – Handelaar veroordeeld tot boete van 10.000 € voor het opvragen van EID
“Schending van het beginsel van minimale gegevensverwerking” en “De verwerking was niet rechtmatig”
Nakedsecurity – Ransomware attacks paralyze, and sometimes crush, hospitals
“A California medical practice that suffered a ransomware attack … . As a result, it’s closing: the clinic will be out of business as of 17 December 2019.”
CNBC – As the school year begins, beware of hackers
“Colleges, training providers and other private educational companies received more malicious emails than any other sector in the first quarter of 2019, according to Mimecast, an email and data security company.”
Nakedsecurity – Microsoft may still be violating privacy rules, says Dutch regulator
“The Dutch data privacy regulator is also advising Windows users to “pay close attention to privacy settings when installing and using this software.””
VRTNWS – FaceApp plots populair, maar is die grappige verouderings-app wel zo onschuldig?
“Wie bij het installeren van de app de kleine lettertjes leest, zal namelijk zien dat FaceApp allerlei informatie over zijn gebruikers opslaat, zoals de beelden van je gezicht, je locatie, ip-adres (het unieke identificatienummer van je internetverbinding) en waar je precies op klikt binnen de app. “
The Hacker News – British Airways Fined £183 Million Under GDPR Over 2018 Data Breach
“Britain’s Information Commissioner’s Office (ICO) today hit British Airways with a record fine of £183 million for failing to protect the personal information of around half a million of its customers during last year’s security breach.”
Elektor – Raspberry Pi steelt data van NASA
“De hackers wisten toegang te krijgen tot het interne netwerk van het JPL door het gebruikersaccount van de Raspberry Pi over te nemen. De RPi was door een medewerker op het netwerk aangesloten, maar ten gevolge van lakse controle wisten de netbeheerders van de NASA niet dat de RPi aanwezig was. “
The Hacker News – Two Florida Cities Paid $1.1 Million to Ransomware Hackers This Month
“The ransomware attack … infected Lake City systems on June 10 after an employee in city hall opened a malicious email. Though the IT staff disconnected computers within just 10 minutes of the cyber attack starting, it was too late.”
Nakedsecurity – WeTransfer sends user file links to wrong people
Asymmetric (public key) cryptography is more complex but also more secure because it uses two digital keys for each user – a private (secret) one that is never sent via any channel, and a public (non-secret) one.