Amazon’s Ring has settled with the Federal Trade Commission (FTC) over charges that the company allowed employees and contractors to access customers’ private videos, and failed to implement security protections which enabled hackers to take control of customers’ accounts, cameras, and videos.
The FTC is now sending refunds totaling more than $5.6 million to US consumers as a result of the settlement. Ring LLC, which was purchased by Amazon in February 2018, sells internet-connected, home security cameras and video doorbells.
Read more…
Source: Malwarebytes Labs
Related:
- Critical Flaws in PGP and S/MIME Tools Can Reveal Encrypted Emails in Plaintext
May 13, 2018
An important warning for people using widely used email encryption tools—PGP and S/MIME—for sensitive communication. A team of European security researchers has released a warning about a set of critical vulnerabilities discovered in PGP and S/Mime encryption tools that could reveal your encrypted emails in plaintext. What’s worse? The vulnerabilities also impact encrypted emails you sent in ...
- Hacking train Wi-Fi may expose passenger data and control systems
May 11, 2018
Vulnerabilities on the Wi-Fi networks of a number of rail operators could expose customers’ credit card information, according to research from Pen Test Partners. The research was conducted over several years, said Pen Test’s Ken Munro. “In most cases they are pretty secure, although whether the Wi-Fi works or not is another matter,” he added. Read more… Source: ...
- Who leaked the idea of ASD spying on Australians, and why?
April 30, 2018
“Secret plan to spy on Aussies,” The Sunday Telegraph headlined the story. “Two powerful government agencies are discussing radical new espionage powers that would see Australia’s cyber spy agency monitor Australian citizens for the first time.” It was a “power grab” detailed in “top secret letters” proposing that the Australian Signals Directorate (ASD) be able to use its cyber ...
- Tech firms could face new EU regulations over fake news
April 24, 2018
EU security commissioner says new regulations may have to be brought in if tech firms fail to tackle issues voluntarily Brussels may threaten social media companies with regulation unless they move urgently to tackle fake news and Cambridge Analytica-style use of personal data before the European elections in 2019. The EU security commissioner, Julian King, said “short-term, ...
- New Orangeworm attack group targets the healthcare sector in the U.S., Europe, and Asia
April 23, 2018
Symantec has identified a new attack group dubbed Orangeworm deploying the Kwampirs backdoor in a targeted attack campaign against the healthcare sector and related industries. Symantec has identified a previously unknown group called Orangeworm that has been observed installing a custom backdoor called Trojan.Kwampirs within large international corporations that operate within the healthcare sector in the United States, ...
- Millions of scraped public social net profiles left in open AWS S3 box
April 19, 2018
US social network data aggregator LocalBlox has been caught leaving its AWS bucket of 48 million records – harvested in part from public Facebook, LinkedIn and Twitter profiles – available to be viewed by anyone who stopped by. Security biz Upguard wandered by on February 18, and found the publicly accessible files in a misconfigured AWS ...