Amazon’s Ring has settled with the Federal Trade Commission (FTC) over charges that the company allowed employees and contractors to access customers’ private videos, and failed to implement security protections which enabled hackers to take control of customers’ accounts, cameras, and videos.
The FTC is now sending refunds totaling more than $5.6 million to US consumers as a result of the settlement. Ring LLC, which was purchased by Amazon in February 2018, sells internet-connected, home security cameras and video doorbells.
Read more…
Source: Malwarebytes Labs
Related:
- Hackers use Conti’s leaked ransomware to attack Russian companies
April 9, 2022
A hacking group used the Conti’s leaked ransomware source code to create their own ransomware to use in cyberattacks against Russian organizations. While it is common to hear of ransomware attacks targeting companies and encrypting data, we rarely hear about Russian organizations getting attacked similarly. This lack of attacks is due to the general belief by Russian ...
- Android apps with 45 million installs used data harvesting SDK
April 7, 2022
Mobile malware analysts warn about a set of applications available on the Google Play Store, which collected sensitive user data from over 45 million installs of the apps. The apps collected this data through a third-party SDK that includes the ability to capture clipboard content, GPS data, email addresses, phone numbers, and even the user’s modem ...
- UK spy agencies sharing bulk personal data with foreign allies was legal, says court
April 6, 2022
A privacy rights org this week lost an appeal in a case about the sharing of Bulk Personal Datasets (BPDs) by MI5, MI6, and GCHQ with foreign intelligence agencies. The British agencies have never stated, in public, whether any of them have shared BPDs with foreign intelligence agencies – they have a so-called “neither confirm nor ...
- Inspector general says the U.S. post office surveillance program exceeded legal authority
March 31, 2022
An inspector general probe into the U.S. Postal Service surveillance program, known as iCOP, concluded that the agency did not have the legal authority to conduct the sweeping intelligence collection and surveillance of American protesters and others between 2018 and 2021. The Postal Service Office of Inspector General launched an investigation into iCOP — which stands ...
- Apple and Meta Gave User Data to Hackers Who Used Forged Legal Requests
March 30, 2022
Apple Inc. and Meta Platforms Inc., the parent company of Facebook, provided customer data to hackers who masqueraded as law enforcement officials, according to three people with knowledge of the matter. Apple and Meta provided basic subscriber details, such as a customer’s address, phone number and IP address, in mid-2021 in response to the forged “emergency ...
- Israel: Mossad head’s personal files, photos leaked by Iran-linked Telegram group
March 16, 2022
Photos and personal documents disclosing information on Mossad director David Barnea and his family were leaked in a Telegram channel called “Open Hands” on Tuesday, Walla reported. Created hours before the leak was published to some 30 followers, the channel is reportedly linked to Iranian groups. A video released in the leak claims the documents and photos ...