SecurityWatch: Make Corporations, Not Customers, Suffer for Data Breaches

SecurityWatch: Make Corporations, Not Customers, Suffer for Data Breaches

On March 29, Earl Enterprises announced that visitors to its chain restaurants may have had their credit card information stolen. If you ate out at specific Buca di Beppo, Chicken Guy!, Earl of Sandwich, Mixology, Planet Hollywood, or Tequila Taqueria, you may have had your credit or debit card information stolen.

Hackers Could Read Your Hotmail, MSN, and Outlook Emails by Abusing Microsoft Support

Hackers Could Read Your Hotmail, MSN, and Outlook Emails by Abusing Microsoft Support

But the issue is much worse than previously reported, with the hackers able to access email content from a large number of Outlook, MSN, and Hotmail email accounts, according to a source who witnessed the attack in action and described it before Microsoft’s statement, as well as screenshots provided to Motherboard.

An Amazon employee might have listened to your Alexa recording

An Amazon employee might have listened to your Alexa recording

A spokesperson defended the company's practices, however, telling Bloomberg that the e-commerce giant only listens to "an extremely small sample" and that its employees do not have access to identifying information:. We only annotate an extremely small sample of Alexa voice recordings in order [to] improve the customer experience.

Two Thirds of Hotel Sites Leak Guest Booking Info to Third-Parties

Two Thirds of Hotel Sites Leak Guest Booking Info to Third-Parties

Third-party services running on most hotel websites have access to guest booking information, including personal data and payment card details. "This information could allow these third-party services to log into a reservation, view personal details, and even cancel the booking altogether," Wueest says.

Toyota Security Breach Exposes Personal Info of 3.1 Million Clients

Toyota Security Breach Exposes Personal Info of 3.1 Million Clients

The personal information of roughly 3.1 million Toyota customers may have been leaked following a security breach of multiple Toyota and Lexus sales subsidiaries, as detailed in a breach notification issued by the car maker today.

The One Word No One Is Talking About in the Disney-Fox Deal

The One Word No One Is Talking About in the Disney-Fox Deal

While Disney's acquisition lacks the dark mirror quality of Amazon's ever-expanding home networking business or Google's inescapable array of services (all of them tracking users with mindboggling granularity), there is considerable consumer data tied to the properties that just changed hands, all of it governed by the privacy policies attached to them, which also changed hands but cannot be changed without user consent.

Ajit Pai’s plan for phone location data never mentions the word “privacy”

Ajit Pai’s plan for phone location data never mentions the word “privacy”

real-time geolocation information." Different data, different rules The FCC has previously said that any location data in the National Emergency Address Database (NEAD) "may not be used for any non-911 purpose, except as otherwise required by law." That's a stronger protection than what the FCC applies to other forms of Customer Proprietary Network Information (CPNI).

Pandora's Box: Another New Way to Leak All Your Sensitive Data

Pandora's Box: Another New Way to Leak All Your Sensitive Data

Much like AWS S3 buckets, these files can be shared to anyone with the link, restricted to those within your company (Box Enterprise), or to specific users. Companies using Box Enterprise get their own sub-domain, and documents saved on Box can be shared to anyone with the unique URL.

Dozens of companies leaked sensitive data thanks to misconfigured Box accounts

Dozens of companies leaked sensitive data thanks to misconfigured Box accounts

Security researchers have found dozens of companies inadvertently leaking sensitive corporate and customer data because staff are sharing public links to files in their Box enterprise storage accounts that can easily be discovered.

Stores See a Future Without ‘May I Help You?’ (They’ll Already Have Your Data)

Stores See a Future Without ‘May I Help You?’ (They’ll Already Have Your Data)

Orbital Insight can gather geolocation data from 10 to 20 percent of phones in any mall, he said, with pings every 15 minutes on average.

Is DNA Left on Envelopes Fair Game for Testing?

Is DNA Left on Envelopes Fair Game for Testing?

She’s sympathetic, but she says, “It just opens up a big can of worms.” To avoid testing living people, Totheletter asks customers to explicitly state that the envelope comes from a dead relative.

One Foot Tsunami: Creeping on You in the Cold Drinks Aisle

One Foot Tsunami: Creeping on You in the Cold Drinks Aisle

But don’t worry, Cooler Screens has a privacy policy : A.

Moving our privacy advocacy forward to protect Australia and you

Moving our privacy advocacy forward to protect Australia and you

In our submission, we cited possible impacts of the act on the local technology sector including creating a distrust of Australia and Australian companies, causing financial losses to tech business, and creating confusion and stress among technical talent.

Cloudflare expands its government warrant canaries

Cloudflare expands its government warrant canaries

The networking and content delivery network giant said in a blog post this week that it’s expanding the transparency reports to include more canaries. Cloudflare’s expanded canaries were included in the company’s latest transparency report, out this week.

The 5 Dumbest Data Breaches in History and What You Should Learn from Them

The 5 Dumbest Data Breaches in History and What You Should Learn from Them

A small group of good guys, known as “the Robin Hood group,” devised a plan to hack into the DAO, drain its remaining currency and return the funds back to its rightful owners.

Amazon and Google ask for non-stop data from smart home devices

Amazon and Google ask for non-stop data from smart home devices

The concern is that both Amazon and Google could do this, and that users didn't consent to sharing as much smart home data as they do today.

McDonalds app users hatin’ it after being hacked by hungry hamburglars

McDonalds app users hatin’ it after being hacked by hungry hamburglars

Lauren Taylor of Halifax, Nova Scotia was shocked to find her bank account almost empty after someone used the McDonald’s mobile app to buy $500 of fast food over 1200 kilometres away in Montreal, Quebec.

Firefox fights for family privacy

Firefox fights for family privacy

With Firefox, digital privacy becomes a little more possible for your family Firefox products work by collecting a minimum amount of sensitive information about the people who use them, such as their browsing habits.

Messenger Marketing is Facebook's True Value for Brands

Messenger Marketing is Facebook's True Value for Brands

The rapid rise in popularity of instant messaging applications such as WhatsApp and Facebook’s Messenger app has allowed companies to give customers a more agile service platform that fits in with their preferences and daily habits.

Data Privacy Concerns with Google

Data Privacy Concerns with Google

Within Google’s range of products, there are seven with at least one billion users. The data collection extends to Google’s entire suite of products, meaning the amount of data the company stores is enormous.

SBI Investigates Reported Massive Data Leak

SBI Investigates Reported Massive Data Leak

See Also: Key Drivers to Enable Digital Transformation in Financial Services The government-owned bank, which has 740 million active accounts, neglected to password-protect one of its servers based in a Mumbai data center, enabling easy access to customer data, TechCrunch reports.

India’s largest bank SBI leaked account data on millions of customers

India’s largest bank SBI leaked account data on millions of customers

India’s largest bank has secured an unprotected server that allowed anyone to access financial information on millions of its customers, like bank balances and recent transactions. The passwordless database allowed us to see all of the text messages going to customers in real-time, including their phone numbers, bank balances, and recent transactions.

Data management giant Rubrik leaked a massive database of client data

Data management giant Rubrik leaked a massive database of client data

A server security lapse has exposed a massive database of customer information belonging to Rubrik, an IT security and cloud data management giant.

Google confirms it uses dummy phone numbers to record calls with local services

Google confirms it uses dummy phone numbers to record calls with local services

VANCOUVER—A spokesperson for Google has confirmed the service they’ve launched in Vancouver and Toronto to connect potential customers to trusted service providers funnels customers through ostensibly local phone numbers that are actually owned by Google for the purpose of call monitoring.

How to Completely Banish Google from Your Android Experience

How to Completely Banish Google from Your Android Experience

Step 2: Install a Google Play Store Replacement With your Google account banished, you've probably started to wonder how you'll get apps on your device.

Woman sues T-Mobile after employees allegedly snoop on racy private video

Woman sues T-Mobile after employees allegedly snoop on racy private video

"Any confidential information, finding out something you accidentally clicked on." Sachs said that he has worked for Executive Cellular Phones, the contracted company that runs this store, for five years, and is unaware of any similar incidents.

AT&T, Sprint, Verizon, T-Mobile US pledge, again, to not sell your location to shady geezers. Sorry, we don't believe them

AT&T, Sprint, Verizon, T-Mobile US pledge, again, to not sell your location to shady geezers. Sorry, we don't believe them

"Nonetheless, we are reviewing these issues carefully to ensure the proper handling of all AT&T customer information." And T-Mobile US's Legere told Senator Wyden to his face that he would end the practice of selling location data through third parties.

Ring let employees watch customer videos, claim reports

Ring let employees watch customer videos, claim reports

A former employee in Ukraine told The Information that “Workers could then access the system from any computer, at home or anywhere.” A Ring representative told The Intercept that the only videos employees view and annotate are those made public through Ring’s community watch app, Neighbors: We take the privacy and security of our customers’ personal information extremely seriously.

For Owners of Amazon’s Ring Security Cameras, Strangers May Have Been Watching Too

For Owners of Amazon’s Ring Security Cameras, Strangers May Have Been Watching Too

“If [someone] knew a reporter or competitor’s email address, [they] could view all their cameras.”” At the same time, the source said, Ring unnecessarily provided executives and engineers in the U.S. with highly privileged access to the company’s technical support video portal, allowing unfiltered, round-the-clock live feeds from some customer cameras, regardless of whether they needed access to this extremely sensitive data to do their jobs.

Carriers Swore They'd Stop Selling Location Data. Will They Ever?

Carriers Swore They'd Stop Selling Location Data. Will They Ever?

"This is a blatant abuse of user privacy, and when companies break their promises to their users, they should expect to be held accountable." Eva Galperin, EFF Bottom line: The carriers said specifically they would stop selling customer location data to third parties.

More