Stay informed with Security World Trend Now! Discover the latest security trends, technologies, and strategies to protect your data, networks, and digital identity. Get expert insights and practical advice for ensuring your online safety. Explore now!
Amazon Ring Settles for $5.8 Million Over Lax Security The Federal Trade Commission (FTC) reached a $5.8 million settlement with Amazon Ring, an American home security company owned by Amazon, over alleged violations of data security practices, according to a court complaint filed by the FTC. The commission argued that Ring failed to take essential…
Apple‘s Security Updates for macOS and the Challenges of Patch Management Introduction Apple‘s recent release of macOS Ventura 13.4 came with a list of security fixes, including two WebKit vulnerabilities that could lead to leaks of sensitive information and remote code execution. While Apple acknowledged that they were “aware of a report that this issue…
Netflix’s Accidental Pro-Customer Security Move Netflix’s new “household” policy, restricting accounts to a single Wi-Fi network and related mobile devices, may have unintended significant benefits to improve customers’ account security. By eliminating password sharing, the streaming giant’s move provides a useful lesson for other business-to-consumer (B2C) organizations on enhancing customer account security. Sharing a password…
Toyota Announces Another Data Breach Toyota Motor Corp. has recently announced that it has discovered another data breach, where two misconfigured cloud services were found leaking 260,000 car owners’ personal information over a seven-year period. This discovery comes after the car manufacturer conducted an investigation of its cloud features following the announcement earlier in the…
macOS Vulnerability “Migraine” Discovered and Fixed A new macOS vulnerability dubbed “Migraine” was recently discovered that allowed cyber attackers to bypass System Integrity Protections (SIP) and gain remote code execution (RCE), potentially installing rootkits, malware, and more. The flaw was tracked under CVE-2023-32369 and discovered by the Microsoft Threat Intelligence team. The Bug and its…
Serious Security: What We Can Learn from the KeePass Password Manager Bug Introduction The news of the “master password crack” vulnerability in the KeePass open-source password manager has garnered significant attention in the past few weeks. This bug is significant enough to have received an official US government identifier, known as CVE-2023-32784. As the password…
Cybersecurity Professionals: Protecting the World at the Expense of Burnout Cybersecurity professionals are the unsung heroes of our digital world, protecting us from potentially disastrous cyberattacks. However, their job comes with demands that pose a threat to their own well-being, causing many of them to face burnout. The ever-increasing threats of cyberattacks compound with the…
Evrotrust Becomes Pre-Notified eID Scheme under eIDAS Regulation On May 31, 2023, Evrotrust Technologies AD, a Bulgarian-based electronic identity and qualified trust service provider, announced that it has been successfully voted by the Cooperation Network at the European Commission as a pre-notified electronic identification (eID) scheme under the eIDAS Regulation. This means that European Union…
Using Data to Disrupt the Drug Trade on the Dark Web A new study published in the journal Information Systems Research provides evidence that selectively targeting large-scale drug vendors online could significantly reduce drug-dealing activities on the dark web. The research team analyzed data from three of the largest darknet markets to demonstrate the impact…
Network Security Guide for Crypto Mining Attacks Introduction The rise of cryptocurrencies has led to an increase in crypto mining attacks. Crypto mining attacks are a type of cyberattack in which the attacker uses the victim’s computer to mine cryptocurrency. These attacks can slow down a victim’s computer, use an excessive amount of electricity, and…