Connected Wristwatch Allows Hackers to Stalk, Spy On Children

Connected Wristwatch Allows Hackers to Stalk, Spy On Children

Alan Monie, researcher with Pen Test Partners, outlined in a Thursday post how he was able to launch various Insecure Direct Object Reference (IDOR) attacks on the watches. Regardless, Monie told Threatpost that the security glitch would be difficult to fix, and recommends that consumers stop using the watch.

Canada Post Admits Privacy Breach Of 4,500 Ontario Cannabis Store Customers

Canada Post Admits Privacy Breach Of 4,500 Ontario Cannabis Store Customers

The country continues to encounter challenges in the rollout of adult-use cannabis: after multiple reports that the legalization was met with shortages of weed, a new issue has arose after it was revealed that thousands of people who ordered pot to be delivered via Canada Post had their private information breached.

Searching For Privacy

Searching For Privacy

Yes, it’s a little-known secret, but there are ways you can search the web without giving up your privacy. This post is simply to inform you of options besides the traditional search engines like Google and Internet Explorer.

Facebook’s New ID Verification System Is Intrusive

Facebook’s New ID Verification System Is Intrusive

Each time we tried to advertise for the magazine, Facebook was automatically blacklisting the post with errors like. Now, Facebook suggests that you should become “verified” in order to create posts with political content.

Walmart-owned Sam’s Club is opening a cashier-less store in Texas

Walmart-owned Sam’s Club is opening a cashier-less store in Texas

Sam’s Club — the members-only, Walmart-owned retail store — is taking a page from Amazon’s playbook by opening an experimental cashier-less “Sam’s Club Now” store in Texas.

'Lax' Security At TwitchCon Causes Anxiety In Wake Of Deadly Shooting

'Lax' Security At TwitchCon Causes Anxiety In Wake Of Deadly Shooting

Twitch TwitchCon attendees complained of inadequate security at the convention in San Jose, California, this weekend despite the deadly shooting at the Madden video game tournament in Jacksonville, Florida, on Aug. 26.

YouTube CEO urges YouTube creators to protest European copyright law

YouTube CEO urges YouTube creators to protest European copyright law

Wojcicki focuses on Article 13 of the EU's new Directive on Copyright, which passed in early September and makes tech platforms liable for copyright-protected content. Essentially, this means that giant platforms that rely on user-generated content, including Google's YouTube, , and , would be responsible for making sure that users don't share copyrighted material.

The Real Reason You Should Be Responsible Online

The Real Reason You Should Be Responsible Online

But let’s forget about your thousands of followers for a while and think about the companies that allow you to share your thoughts, beliefs, and experiences online. Here’s another reason not to post inappropriate stuff online: hackers.

Easy censorship-resistant communication with Syndie

Easy censorship-resistant communication with Syndie

Syndie operates like blogs, newsgroups, and forums. Then click “Create posts,” now see “Anyone can reply to an authorized post” is checked? If you want to make your forum as “forum,” then simply check “Anyone can post” in “Create posts.”

Google ends controversial practice with its mobile apps in the E.U.

In making their decision, antitrust officials in Europe had said that Google’s practice of tying the apps together could harm competition by giving Google a built-in advantage over new apps struggling to attract an audience.

The Google+ Bug Is More About The Cover-Up Than The Crime

The Google+ Bug Is More About The Cover-Up Than The Crime

According to a Google blog post, an internal review discovered a bug in one of the ways that third-party apps could access data about a user and their friends. Users can grant access to their Profile data, and the public Profile information of their friends, to Google+ apps, via the API.

Google + is shutting down after a massive data breach, sending shares down

Google + is shutting down after a massive data breach, sending shares down

Google is shutting down its beleaguered Google+ social network after it discovered a software bug that gave third-parties potential access to private user data, the company writes in a blog post.

Tim Berners-Lee launches open source project Solid to decentralize the web and place users in control of data

Tim Berners-Lee launches open source project Solid to decentralize the web and place users in control of data

Tim Berners-Lee is famous for inventing the world wide web, and now he's ready to take things to the next level with an ambitious open source project called Solid.

Hacker says he'll livestream deletion of Zuckerberg's Facebook page

Hacker says he'll livestream deletion of Zuckerberg's Facebook page

According to Bloomberg, the self-proclaimed bug bounty hunter is a minor celebrity in Taiwan who's appeared on talk shows and was reportedly sued by a local bus operator after breaching their systems to nab a ticket for just NT$1 (3 cents).

The U.S. might (finally) be ready for federal privacy legislation. Let’s make sure it protects us.

The U.S. might (finally) be ready for federal privacy legislation. Let’s make sure it protects us.

The GDPR is important in the United States because even though the biggest companies that handle data in the U.S. lobbied against it, now that it is law they are obligated to follow the rules (provided they have data on or offer services to Europeans).

Trend Micro backtracks on browser history collection after its apps are removed from mac App Store

It recently came to light that a number of apps in the mac App Store were collecting data about users' browsing histories and uploading them to a remote server.

Password breach teaches Reddit that, yes, phone-based 2FA is that bad

Password breach teaches Reddit that, yes, phone-based 2FA is that bad

A newly disclosed breach that stole password data and private messages is teaching Reddit officials a lesson that security professionals have known for years: two-factor authentication (2FA) that uses SMS or phone calls is only slightly better than no 2FA at all.

US politicians discover personally the pitfalls of facial recognition: is it time to ban it completely?

US politicians discover personally the pitfalls of facial recognition: is it time to ban it completely?

As Amazon rightly notes, this shows the critical importance of choosing appropriate confidence levels when deploying facial recognition systems – something that is rarely discussed.

Firefox Add-On With 220,000+ Installs Caught Collecting Users' Browsing History

Firefox Add-On With 220,000+ Installs Caught Collecting Users' Browsing History

A popular Firefox add-on is secretly logging users' browsing history, according to reports from the author of the uBlock Origin ad blocker and Mike Kuketz, a German privacy and security blogger.