Millions of Vinted, Spotify and Tinder users’ data could be compromised in global hack

Millions of users of popular apps such as Vinted, Spotify, Candy Crush and Tinder may have had their sensitive location data stolen by an unknown hacker who has posted details on a Russian-language site popular with cyber-criminals. In what is Read More …

New Orleans attacker filmed visits to city weeks earlier, wore Meta smart glasses during attack

The New Orleans terrorist attacker visited the Louisiana city twice in the weeks before the attack and recorded video of the area using Meta smart glasses, the FBI revealed Sunday. Shamsud-Din Jabbar, 42, stayed at a rental home in New Read More …

Data leak at VW subsidiary affects 800,000 electric cars

A data leak at the software company Cariad, a subsidiary of German car manufacturer Volkswagen (VW), left the personal details of electric car owners in Europe available online for months, Germany’s Spiegel news magazine reported on Friday. The movement data Read More …

Thousands of GPS tracking customers have info leaked following data breach

Hapn, a company that sells GPS tracking hardware and software, is reportedly spilling sensitive user information online, and is not responding to researcher alerts or media inquiries, experts have claimed. In late November 2024, a security researcher reached out to Read More …

Foreign espionage agencies exploit crowdsourcing for covert intelligence gathering in China

China’s Ministry of State Security revealed on Wednesday that foreign intelligence agencies are using crowdsourcing to gather sensitive data in China, posing a covert but serious threat to national security. This covert method, dubbed “crowdsourced espionage,” poses an escalating threat. Read More …

Italian food delivery app Foodinho eats another privacy fine

Not for the first time, food delivery firm Foodinho has been spanked by Italy’s privacy watchdog. Per Reuters, the Glovo-owned on-demand delivery app has been fined €5 million ($5.20 million) after it was found to have unlawfully processed the data of Read More …

Inside Water Barghest’s Rapid Exploit-to-Market Strategy for IoT Devices

There is a big incentive for both espionage motivated actors and financially motivated actors to set up proxy botnets. These can serve as an anonymization layer, which can provide plausibly geolocated IP addresses to scrape contents of websites, access stolen Read More …

Threats in space (or rather, on Earth): Internet-exposed GNSS receivers

Global Navigation Satellite Systems (GNSS) are collections, or constellations of satellite positioning systems. There are several GNSSs launched by different countries currently in operation: GPS (US), GLONASS (Russia), Galileo (EU), BeiDou Navigation Satellite System (BDS, China), Navigation with Indian Constellation Read More …

UK: Cyber attack disables prison vans’ panic alarms

Tracking devices and panic alarms on prisoner transport vans have been disabled in a cyber attack. Serco, which has a contract for prisoner escort and custody services, was among companies hit by the cyber attack on Microlise. Microlise provides tracking Read More …

Hacked GPS tracker reveals location data of customers

Stalkerware researcher maia arson crimew strikes again. Big time. We know maia as a researcher that loves to go after stalkerware peddlers, which Malwarebytes—as one of the founding members of the Coalition Against Stalkerware—loves to see. The investigation into Tracki, Read More …