Researchers Discover Two Major Flaws in the World’s Computers

To take advantage of Meltdown, hackers could rent space on a cloud service, just like any other business customer. Once they were on the service, the flaw would allow them to grab information like passwords from other customers.

That is a major threat to the way cloud-computing systems operate. Cloud services often share machines among many customers — and it is uncommon for, say, a single server to be dedicated to a single customer. Though security tools and protocols are intended to separate customers’ data, the recently discovered chip flaws would allow bad actors to circumvent these protections.

Jan 3, 2018

Massive Equifax data breach hits 143 million

About 143 million US customers of credit report giant Equifax may have had information compromised in a cyber security breach, the company has disclosed. Equifax said cyber-criminals accessed data such as Social Security numbers, birth dates and addresses during the incident. Some UK and Canadian customers were also affected. The firm's core consumer and commercial credit databases were not accessed.

Sept 8, 2017

Hacked Dropbox login data of 68 million users is now for sale on the dark Web

Email and password data for more than 68 million Dropbox users is for sale in the darknet marketplace. The data set, which is from a 2012 breach [emphasis added], includes users' email addresses as well as obscured passwords. The nearly 5 gigabytes of data represents one of the larger user credential leaks in recent years.

Sept 7, 2016

'Outrageous': RCMP can unlock BlackBerry messages

Privacy experts are expressing concern and outrage after the revelation that the RCMP has had a key to unlock encrypted PIN-to-PIN messages between personal BlackBerry users since at least 2010 [emphasis added]…Ann Cavoukian, Ontario’s former Privacy Commissioner, said the computer code would have allowed police to open not just the ‘bad guy’s’ communications, but ‘yours, mine and anybody’s.’ That fact, she says, is ‘outrageous.’

Apr 15, 2016

Google, unlike Microsoft, must turn over foreign emails: U.S. judge

A U.S. judge has ordered Google to comply with search warrants seeking customer emails stored outside the United States, diverging from a federal appeals court that reached the opposite conclusion in a similar case involving Microsoft Corp. Google, a unit of Mountain View, California-based Alphabet Inc., said in a statement on Saturday: ‘The magistrate in this case departed from precedent, and we plan to appeal the decision. We will continue to push back on overbroad warrants.’

Feb 15, 2017

Yahoo Says 1 Billion User Accounts Were Hacked

Yahoo already reeling from its September that 500 million user accounts had been hacked in 2014 [emphasis added], disclosed on Wednesday that a different attack in 2013 compromised more than 1 billion accounts. The two attacks are the largest known security breaches of one company’s computer network. The newly disclosed 2013 attack involved sensitive user information, including names, telephone numbers, dates of birth, encrypted passwords and unencrypted security questions that could be used to reset a password.

Dec 14, 2016

Four charged over sale of Teledyne DALSA technology to China

Police allege two Canadians–who worked at Waterloo, Ont.-based Teledyne DALSA–stole technology from their employer and set up a company with a former employee in order to get a contract to make the sensor.

Feb 29, 2016

Experian Says Info from 15 Million T-Mobile Records Hacked

Credit reporting agency Experian said Thursday that hackers accessed the Social Security numbers, birthdates and other personal information belonging to about 15 million people who applied for T-Mobile wireless services. T-Mobile uses Experian to check the credit of its customers and prospective customers. Experian said consumers who applied for T-Mobile wireless service between.

Sept 16, 2015