Mashable: Google sued over tracking locations even when ‘Location History’ is off

Mashable: Google sued over tracking locations even when ‘Location History’ is off. “Last week, a bombshell AP investigation found that Google was still tracking iPhone and Android device users, even if they turned off the ‘Location History’ setting. Now, the first lawsuit has been filed against the search engine giant over this issue, according to documents posted by Ars Technica.”

Ubergizmo: Glitch Accidentally Exposes Twitch Private Messages

Ubergizmo: Glitch Accidentally Exposes Twitch Private Messages. “Back in May earlier this year, Twitch decided to ultimately kill off one of their features in the form of Messages. However the company also gave its users the option of downloading an archive of all their private messages should they decide to keep it for whatever reasons. Unfortunately a glitch with the system seems to have exposed the private messages of some users.”

CNET: Google clarifies how it tracks you even if Location History is turned off

CNET: Google clarifies how it tracks you even if Location History is turned off. “Google says it’s trying to be clearer about how it tracks users on certain apps. On Thursday, the search giant updated a help page for its location tracking tools, after the company’s data collection practices had come under fire for being what some critics called misleading.”

Neowin: Mozilla Fellows develop extension to let you learn about and thwart targeted ads

Neowin: Mozilla Fellows develop extension to let you learn about and thwart targeted ads. “Most people realise things on the internet are not free and either need to be maintained by a subscription or through advertising. In the case of ads, firms like Google and Facebook aggressively track users in order to show better ads, but the amount of data they hold is a bit troubling. Several Mozilla Fellows decided to create a new add-on for Chrome and Firefox called Fuzzify.me which aims to tell you why certain ads are shown to you, and gives you the power to thwart these ads.”

The Register: Patch Tuesday heats up with pair of exploited zero-days squashed – plus 58 other vulns fixed

The Register: Patch Tuesday heats up with pair of exploited zero-days squashed – plus 58 other vulns fixed . “Microsoft and Adobe have teamed up to deliver more than 70 patches with this month’s Patch Tuesday batch released today. Microsoft contributed the bulk of the fixes emitted this month, kicking out updates for 60 CVE-listed vulnerabilities in its products. These should be installed as soon as you’re able to test and deploy them.”

ThreatBrief: Vulnerability Disclosures in 2018 So Far Outpacing Previous Years’

ThreatBrief: Vulnerability Disclosures in 2018 So Far Outpacing Previous Years’. “Between January 1 and June 30 of this year, a total of 10,644 vulnerabilities were published compared to 9,690 in the same period in 2017. The trend so far this year suggests that the total number of disclosed vulnerabilities in 2018 will comfortably exceed the 20,832 vulnerabilities that Risk Based Security published during 2017 — which itself represented a 31% increase over 2016.”

Oracle: Run, don’t walk, to patch this critical Database takeover bug (The Register)

The Register: Oracle: Run, don’t walk, to patch this critical Database takeover bug. “Oracle is advising customers to update their database software following the discovery and disclosure of a critical remote code execution vulnerability. The flaw, dubbed CVE-2018-3110 was given a CVSS base score of 9.9 (out of 10) and Oracle warns that successful exploit of the bug ‘can result in complete compromise of the Oracle Database and shell access to the underlying server.'”