Lifehacker: How To Survive A Facebook Hack. “Here we go again. Radware’s threat research group recently announced that more than 40,000 Facebook users were duped into downloading a ‘Relieve Stress Paint’ application, via a crafty phishing email, that stole their login credentials and browser cookies while they pretend-painted in the app. Worse, the attack was clever enough to avoid being flagged by a typical antivirus app. So, how can you keep your data safe in these instances? Let’s review…”
privacy
ZDNet: LinkedIn bug allowed data to be stolen from user profiles
ZDNet: LinkedIn bug allowed data to be stolen from user profiles. “A bug in how LinkedIn autofills data on other websites could have allowed an attacker to silently steal user profile data. The flaw was found in LinkedIn’s widely used AutoFill plugin, which allows approved third-party websites to let LinkedIn members automatically fill in basic information from their profile — such as their name, email address, location, and where they work — as a quick way to sign up to the site or to receive email newsletters.”
Google cuts fake ad blockers from Chrome Store: Were you among 20 million fooled? (ZDNet)
ZDNet: Google cuts fake ad blockers from Chrome Store: Were you among 20 million fooled?. “A researcher has uncovered five malicious ad-blocker extensions on the Chrome Web Store that were installed by 20 million Chrome users before Google removed them. The bogus ad blockers were discovered by researchers at AdGuard, a Moscow-based maker of ad-blocking and anti-tracking tech.”
New York Times: Facebook’s Current Status With Advertisers? It’s Complicated
New York Times: Facebook’s Current Status With Advertisers? It’s Complicated. “Advertisers are the lifeblood of Facebook, and the vast, personal reach of the social network has been a marketer’s dream. But now, some companies are taking a harder look at how they work with it and hunting for skeletons in their own data closets.”
Source: Introducing the Field Guide to Security Training in the Newsroom
Source: Introducing the Field Guide to Security Training in the Newsroom. “Most people don’t think much about privacy or security until they find themselves in a situation where they really need it. Often, by then it is too late. Wrapping your head around how the internet works while you’re in the middle of a high-stakes investigation is a distraction you can head off by taking privacy seriously before you encounter a crisis. The 2016 Presidential election got a lot of folks, in and out of newsrooms, thinking about their digital privacy. And it reinforced something we’ve known for a while: there are not enough trainers to go around. There are fantastic people at great organizations that do lead trainings. There are also a lot of reporters who happen to have higher security standards than their colleagues, and they get called on to lead these trainings. But it is clear that there’s room for far more.”
ZDNet: Data firm leaks 48 million user profiles it scraped from Facebook, LinkedIn, others
ZDNet: Data firm leaks 48 million user profiles it scraped from Facebook, LinkedIn, others. “Localblox, a Bellevue, Wash.-based firm, says it ‘automatically crawls, discovers, extracts, indexes, maps and augments data in a variety of formats from the web and from exchange networks.’ Since its founding in 2010, the company has focused its collection on publicly accessible data sources, like social networks Facebook, Twitter, and LinkedIn, and real estate site Zillow to name a few, to produce profiles. But earlier this year, the company left a massive store of profile data on a public but unlisted Amazon S3 storage bucket without a password, allowing anyone to download its contents.”
PC World: Opera is shuttering its VPN app for iOS and Android, sending users to SurfEasy
PC World: Opera is shuttering its VPN app for iOS and Android, sending users to SurfEasy. “Pour one out for Olaf. No, not the charming snowman from Disney’s Frozen, the mascot for Opera’s free VPN app. Opera has announced that the warmhearted Viking will be retiring at the end of April, taking the free VPN app for iOS and Android with him.”
