Microsoft discloses new Windows vulnerability that’s being actively exploited

Microsoft discloses new Windows vulnerability that’s being actively exploited

Microsoft disclosed a new remote code execution vulnerability today that can be found in all supported versions of Windows and is currently being exploited in “limited targeted attacks” (via TechCrunch).Microsoft patches Windows 10 security flaw discovered by the NSA.

Reddit's CEO described TikTok as 'parasitic' and 'spyware'

Reddit's CEO described TikTok as 'parasitic' and 'spyware'

Reddit CEO Steve Huffman said TikTok is “fundamentally parasitic” at a panel discussion on Wednesday.According to TechCrunch, Reddit CEO Steve Huffman disputed the idea that Silicon Valley could learn anything from TikTok.

Apple Issues New Warning For Millions Of iPhone Users [Updated]

Apple Issues New Warning For Millions Of iPhone Users [Updated]

AppleThe admission, issued to TechCrunch, follows research published by security specialist Brian Krebs which reveals Apple’s new iPhone 11 range are seeking information about their location even when users have specifically changed the phone’s privacy settings to stop this from happening.

Popular Android phones can be tricked into snooping on their owners

Popular Android phones can be tricked into snooping on their owners

“The impact of these attacks ranges from sensitive user information exposure to complete service disruption,” said Syed Rafiul Hussain and Imtiaz Karim, two co-authors of the research, in an email to TechCrunch.

Apple isn't too happy about apps that secretly record your phone's screen

Apple isn't too happy about apps that secretly record your phone's screen

According to TechCrunch, Apple is telling developers via e-mail that apps "must request explicit user consent and provide a clear visual indication when recording, logging, or otherwise making a record of user activity."

A huge database of Facebook users’ phone numbers found online

A huge database of Facebook users’ phone numbers found online

Each record contained a user’s unique Facebook ID and the phone number listed on the account.TechCrunch verified a number of records in the database by matching a known Facebook user’s phone number against their listed Facebook ID.

Facial-recognition software will be installed at Israeli checkposts

Facial-recognition software will be installed at Israeli checkposts

TechCrunch reports Google has proposed a new privacy initiative that aims to curb tracking by digital marketers and advertisers.Gallup reports its poll of 1,522 Americans revealed respondents are divided on whether big tech companies need more regulation.

StockX was hacked, exposing millions of customers’ data

StockX was hacked, exposing millions of customers’ data

The fashion and sneaker trading platform pushed out a password reset email to its users on Thursday citing “system updates,” but left users confused and scrambling for answers. An unnamed data breached seller contacted TechCrunch claiming more than 6.8 million records were stolen from the site in May by a hacker.

Facebook app banned by Apple got data from 187k users first- 9to5Mac

Facebook app banned by Apple got data from 187k users first- 9to5Mac

The social media giant said in a letter to Sen. Richard Blumenthal’s office — which TechCrunch obtained — that it collected data on 31,000 users in the U.S., including 4,300 teenagers.

Facebook collected device data on 187,000 users using banned snooping app

Facebook collected device data on 187,000 users using banned snooping app

Earlier this year, a TechCrunch investigation found both Facebook and Google were abusing their Apple-issued enterprise developer certificates, designed to only allow employees to run iPhone and iPad apps used only inside the company.

Private data (including rates) of 49M Instagram influencers leaked

Private data (including rates) of 49M Instagram influencers leaked

Last night, TechCrunch reported that a massive database containing info of over 49 million Instagram influencers, celebrities, and brand accounts found in the open. As per the report, the data contained influencers’ Instagram handles, bios, verification status, location, email, and phone number.

New flaws in 4G, 5G allow attackers to intercept calls and track phone locations

New flaws in 4G, 5G allow attackers to intercept calls and track phone locations

“Any person with a little knowledge of cellular paging protocols can carry out this attack… such as phone call interception, location tracking, or targeted phishing attacks.” Syed Rafiul Hussain, Purdue University The paper, seen by TechCrunch prior to the talk, details the attacks: the first is Torpedo, which exploits a weakness in the paging protocol that carriers use to notify a phone before a call or text message comes through.

Senators Grill Facebook, Google, and Apple Over Invasive Apps

Senators Grill Facebook, Google, and Apple Over Invasive Apps

Three of the Senate’s biggest privacy advocates are sending letters to Facebook, Google, and Apple executives Thursday, following a recent TechCrunch report that Facebook used an iOS and Android app to monitor the phones of users as young as 13 years old.

Apple tells app developers to disclose or remove screen recording code

Apple tells app developers to disclose or remove screen recording code

Apple is telling app developers to remove or properly disclose their use of analytics code that allows them to record how a user interacts with their iPhone apps — or face removal from the app store, TechCrunch can confirm.

'F*ck ethics. Money is everything': Facebook employees react to scandal on gossip app

'F*ck ethics. Money is everything': Facebook employees react to scandal on gossip app

Following a blockbuster Jan. 29 report from TechCrunch detailing how Facebook paid teens to spy on their smartphones, and the subsequent backlash from Apple, employees of the social media giant have taken to the anonymous workplace discussion app Blind to vent.

Apple unblocks Google's internal apps on iOS devices

Apple unblocks Google's internal apps on iOS devices

The block came because Google sidestepped the App Store and took advantage of Apple's developer enterprise program, which is designed to let companies internally distribute apps, TechCrunch reported Wednesday .

SBI Investigates Reported Massive Data Leak

SBI Investigates Reported Massive Data Leak

See Also: Key Drivers to Enable Digital Transformation in Financial Services The government-owned bank, which has 740 million active accounts, neglected to password-protect one of its servers based in a Mumbai data center, enabling easy access to customer data, TechCrunch reports.

Facebook Is Paying Teens to Install a 'Research' App That Lets It Monitor Their Phones [Updated]

Facebook Is Paying Teens to Install a 'Research' App That Lets It Monitor Their Phones [Updated]

Some of the ads asked for individuals ages 13-17 for a “paid social media research study,” while another advertised opportunities for users “Age: 13-35 (parental consent required for ages 13-17).” Facebook appears to have taken steps to obfuscate that they are behind the program, with TechCrunch reporting that some sign-up methods only mentioned its name during installation instructions.

Facebook has been paying teens $20 a month for total access to their phone activity

Facebook has been paying teens $20 a month for total access to their phone activity

TechCrunch reported that the company has been paying people ages 13 to 25 as much as $20 month in exchange for installing an app called Facebook Research on iOS or Android, which monitors their phone and web activity and sends it back to Facebook.

Instagram caught selling ads to follower-buying services it banned

Instagram caught selling ads to follower-buying services it banned

A TechCrunch investigation initially found 17 services selling fake followers or automated notification spam for luring in followers that were openly advertising on Instagram despite blatantly violating the network’s policies.

WhatsApp has an encrypted child porn problem

WhatsApp has an encrypted child porn problem

A report from two Israeli NGOs reviewed by TechCrunch details how third-party apps for discovering WhatsApp groups include “Adult” sections that offer invite links to join rings of users trading images of child exploitation.

Facebook bug exposed up to 6.8M users’ unposted photos to apps

Facebook bug exposed up to 6.8M users’ unposted photos to apps

Facebook tells TechCrunch it discovered the breach on September 25th, and informed the European Union’s privacy watchdog the Office Of The Data Protection Commissioner (IDPC) on November 22nd. Curiously, Facebook discovered the bug on September 25th, the same day as its 30 million user breach.

ACLU Wants Release of Secret Court Order Demanding Facebook Build Surveillance Backdoor

ACLU Wants Release of Secret Court Order Demanding Facebook Build Surveillance Backdoor

But as TechCrunch noted, without public access to the ruling against the DOJ, other tech companies that will be inevitably asked to build backdoor surveillance tools into their products by authorities in the future may not be able to cite Facebook’s precedent.

LinkedIn used 18 million non-user e-mails to target Facebook ads

LinkedIn used 18 million non-user e-mails to target Facebook ads

Ireland’s Data Protection Commission issued a report last week (via TechCrunch) that covered its activities during the first six months of 2018, in which it highlighted a complaint against LinkedIn. It found that the company used millions of e-mail addresses of non-LinkedIn users to target ads on Facebook.

LinkedIn cuts off email address exports with new privacy setting

LinkedIn cuts off email address exports with new privacy setting

Now LinkedIn confirms to TechCrunch that “This is a new setting that gives our members even more control of their email address on LinkedIn. If you take a look at the setting titled ‘Who can download your email’, you’ll see we’ve added a more detailed setting that defaults to the strongest privacy option.

Apple says its T2 chip can prevent hackers from eavesdropping through your MacBook mic

Apple says its T2 chip can prevent hackers from eavesdropping through your MacBook mic

In a new security document published today, and reported on first by TechCrunch, Apple is giving us a glimpse at some of the chip’s capabilities, specifically its ability to prevent hackers from eavesdropping through your laptop microphone.

Instagram is testing the ability to share your precise location history with Facebook

Instagram is testing the ability to share your precise location history with Facebook

Instagram is currently testing a feature that would allow it to share your location data with Facebook, even when you’re not using the app, reports app researcher Jane Manchun Wong (via TechCrunch).

Three years later, Let’s Encrypt has issued over 380 million HTTPS certificates

Three years later, Let’s Encrypt has issued over 380 million HTTPS certificates

That means bloggers, single-page websites and startups alike can get an easy-to-install certificate for free — even news sites like TechCrunch rely on Let’s Encrypt for a secure connection.

Facebook bans first app since Cambridge Analytica, myPersonality, and suspends hundreds more – TechCrunch

Facebook bans first app since Cambridge Analytica, myPersonality, and suspends hundreds more – TechCrunch

Facebook suspended the app around then, saying “we believe that it may have violated Facebook’s policies.” That suspension has graduated into a ban, because the creators “fail[ed] to agree to our request to audit and because it’s clear that they shared information with researchers as well as companies with only limited protections in place.”