Microsoft disclosed a new remote code execution vulnerability today that can be found in all supported versions of Windows and is currently being exploited in “limited targeted attacks” (via TechCrunch).Microsoft patches Windows 10 security flaw discovered by the NSA.
Reddit CEO Steve Huffman said TikTok is “fundamentally parasitic” at a panel discussion on Wednesday.According to TechCrunch, Reddit CEO Steve Huffman disputed the idea that Silicon Valley could learn anything from TikTok.
AppleThe admission, issued to TechCrunch, follows research published by security specialist Brian Krebs which reveals Apple’s new iPhone 11 range are seeking information about their location even when users have specifically changed the phone’s privacy settings to stop this from happening.
“The impact of these attacks ranges from sensitive user information exposure to complete service disruption,” said Syed Rafiul Hussain and Imtiaz Karim, two co-authors of the research, in an email to TechCrunch.
According to TechCrunch, Apple is telling developers via e-mail that apps "must request explicit user consent and provide a clear visual indication when recording, logging, or otherwise making a record of user activity."
TechCrunch reports Google has proposed a new privacy initiative that aims to curb tracking by digital marketers and advertisers.Gallup reports its poll of 1,522 Americans revealed respondents are divided on whether big tech companies need more regulation.
The fashion and sneaker trading platform pushed out a password reset email to its users on Thursday citing “system updates,” but left users confused and scrambling for answers. An unnamed data breached seller contacted TechCrunch claiming more than 6.8 million records were stolen from the site in May by a hacker.
Earlier this year, a TechCrunch investigation found both Facebook and Google were abusing their Apple-issued enterprise developer certificates, designed to only allow employees to run iPhone and iPad apps used only inside the company.
Last night, TechCrunch reported that a massive database containing info of over 49 million Instagram influencers, celebrities, and brand accounts found in the open. As per the report, the data contained influencers’ Instagram handles, bios, verification status, location, email, and phone number.
“Any person with a little knowledge of cellular paging protocols can carry out this attack… such as phone call interception, location tracking, or targeted phishing attacks.” Syed Rafiul Hussain, Purdue University The paper, seen by TechCrunch prior to the talk, details the attacks: the first is Torpedo, which exploits a weakness in the paging protocol that carriers use to notify a phone before a call or text message comes through.
Three of the Senate’s biggest privacy advocates are sending letters to Facebook, Google, and Apple executives Thursday, following a recent TechCrunch report that Facebook used an iOS and Android app to monitor the phones of users as young as 13 years old.
Apple is telling app developers to remove or properly disclose their use of analytics code that allows them to record how a user interacts with their iPhone apps — or face removal from the app store, TechCrunch can confirm.
Following a blockbuster Jan. 29 report from TechCrunch detailing how Facebook paid teens to spy on their smartphones, and the subsequent backlash from Apple, employees of the social media giant have taken to the anonymous workplace discussion app Blind to vent.
The block came because Google sidestepped the App Store and took advantage of Apple's developer enterprise program, which is designed to let companies internally distribute apps, TechCrunch reported Wednesday .
See Also: Key Drivers to Enable Digital Transformation in Financial Services The government-owned bank, which has 740 million active accounts, neglected to password-protect one of its servers based in a Mumbai data center, enabling easy access to customer data, TechCrunch reports.
Some of the ads asked for individuals ages 13-17 for a “paid social media research study,” while another advertised opportunities for users “Age: 13-35 (parental consent required for ages 13-17).” Facebook appears to have taken steps to obfuscate that they are behind the program, with TechCrunch reporting that some sign-up methods only mentioned its name during installation instructions.
TechCrunch reported that the company has been paying people ages 13 to 25 as much as $20 month in exchange for installing an app called Facebook Research on iOS or Android, which monitors their phone and web activity and sends it back to Facebook.
A TechCrunch investigation initially found 17 services selling fake followers or automated notification spam for luring in followers that were openly advertising on Instagram despite blatantly violating the network’s policies.
Facebook tells TechCrunch it discovered the breach on September 25th, and informed the European Union’s privacy watchdog the Office Of The Data Protection Commissioner (IDPC) on November 22nd. Curiously, Facebook discovered the bug on September 25th, the same day as its 30 million user breach.
But as TechCrunch noted, without public access to the ruling against the DOJ, other tech companies that will be inevitably asked to build backdoor surveillance tools into their products by authorities in the future may not be able to cite Facebook’s precedent.
Ireland’s Data Protection Commission issued a report last week (via TechCrunch) that covered its activities during the first six months of 2018, in which it highlighted a complaint against LinkedIn. It found that the company used millions of e-mail addresses of non-LinkedIn users to target ads on Facebook.
Now LinkedIn confirms to TechCrunch that “This is a new setting that gives our members even more control of their email address on LinkedIn. If you take a look at the setting titled ‘Who can download your email’, you’ll see we’ve added a more detailed setting that defaults to the strongest privacy option.
In a new security document published today, and reported on first by TechCrunch, Apple is giving us a glimpse at some of the chip’s capabilities, specifically its ability to prevent hackers from eavesdropping through your laptop microphone.
That means bloggers, single-page websites and startups alike can get an easy-to-install certificate for free — even news sites like TechCrunch rely on Let’s Encrypt for a secure connection.
Facebook suspended the app around then, saying “we believe that it may have violated Facebook’s policies.” That suspension has graduated into a ban, because the creators “fail[ed] to agree to our request to audit and because it’s clear that they shared information with researchers as well as companies with only limited protections in place.”