A week after the revelation that Facebook leaked the data of 500 million users – including phone numbers and other potentially sensitive information – and the company still hasn’t given a full account of what happened. But we managed to understand both that the the root of the problem was Facebook’s “import contacts” feature, and that Facebook has had many opportunities to fix this problem before attackers scratch the data of half a billion people.
Federal agents arrested a 28-year-old Texas man on Thursday for allegedly conspired to blow up an Amazon data center in Virginia. According to court documents, he had posted alarming messages on the MyMilitia.com forums, which someone then reported to the FBI. Although this is a concerning incident, national terrorism experts say there is no sign that Big Tech is a more pronounced target than in years past despite heightened rhetoric from the far right around the supposed censorship.
Encrypted messaging app signal announced this week that it will start incorporating the relatively new MobileCoin cryptocurrency. While a payment feature helps Signal keep up with its most comprehensive competitors, the move raised the question of whether Signal was attracting interest from regulators and over-complicating a product praised for its simplicity and ease of use.
As Slack and Discord gained popularity during the pandemic, they became most popular among hackers to spread malware. And as local Twitch micro-celebrities become more and more publicized, the service has instituted an official policy to enforce the serious bad behavior that occurs off-platform.
the UK seeks to stop Facebook’s attempts to extend its end-to-end encryption. Russia may have found a new way to censor the internet, and Twitter bears the brunt. And Call of Duty the tips are increasingly filled with malware on board.
Finally, it is rare to take a look at the National Security Agency, but three women involved in cybersecurity in the intelligence community gave WIRED insight into the opportunities and obstacles who have defined their careers.
And there’s more! Each week, we collect all the news that WIRED hasn’t covered in depth. Click on the titles to read the full stories. And stay safe there.
Do you remember that Facebook leak? Of course! We just spent a lot of time on it. Not to be outdone, LinkedIn confirmed this week that a treasure for sale on hacker forums includes “publicly visible member profile data that appears to have been pulled from LinkedIn,” in addition to other sources on the Web. LinkedIn was not hacked (this time!), but instead fell victim to assailants who understood how to collect publicly available user information in large scale. Even if it was already online, personal data aggregated in this way still benefits hackers and phishers, in particular, who can use it to create profiles of you for better targeting.
More than 27 tonnes of cocaine have been confiscated in Antwerp in the past two months, according to Belgian police. More curiously, authorities say they were initially made aware of the shipments after deciphering hundreds of millions of messages sent over the encrypted telephone company and the Sky ECC network. The Dutch and Belgian authorities had already apprehended dozens of people allegedly linked to drug trafficking as a result of Sky’s cracking.
Two Dutch researchers this week demonstrated that they can remotely control a PC running Zoom without any user interaction. Specific details were not disclosed, as Zoom has yet to fix the underlying bugs. The team’s discovery earned them $ 200,000 at Pwn2Own, a biannual contest for white hat hackers. “We are working to alleviate this issue with respect to Zoom Chat, our group messaging product,” Zoom said in a statement. “In-session chat in Zoom meetings and Zoom video webinars is not affected by the issue. The attack must also come from an accepted external contact or be part of the target’s same organizational account.”
In these times of quarantine, it is natural to experience an increase in personal wine consumption. This has not gone unnoticed by crooks, who, according to new research from Recorded Future and Area 1 Security, have increasingly registered malicious domains targeting wine lovers. At its peak in June, malicious domains accounted for 7% of all wine-themed domains registered. Talk about … sour grapes.
More WIRED stories