Read Time:6 Second
Russian-backed APT29 has been spying on US and European organizations since at least 2021, a US-UK joint advisory said
Category Archives: News
Disinformation Campaign Targets Moldova Ahead of EU Referendum
Read Time:4 Second
Operation MiddleFloor targets Moldova’s October elections, spreading EU disinformation via email
Over 10m Conversations Exposed in AI Call Center Hack
Read Time:6 Second
The data breach exposed more than 10m customer conversations from an AI call center platform in the Middle East
EU Adopts Cyber Resilience Act for Connected Devices
Read Time:5 Second
The EU’s Cyber Resilience Act requires cybersecurity standards for all connected products throughout their entire lifecycle
Ransomware attack leaks social security numbers of over 230,000 Comcast customers
Read Time:16 Second
Financial Business and Consumer Solutions (FBCS), a debt collection agency previously used by Comcast, was the subject of a ransomware attack in February 2024, which had a database of names, addresses, social security numbers, dates of birth, and Comcast account details exposed.
Read more in my article on the Hot for Security blog.
Marriott Agrees $52m Settlement for Massive Data Breach
Read Time:8 Second
Marriott will pay $52m to 50 US states for a data breach impacting 131.5 million American customers, and has agreed to implement stronger security practices
Internet Archive Breached, 31 Million Records Exposed
Read Time:5 Second
The non-profit digital library was also hit by at least two DDoS attacks in two days
Deebot Robot Vacuums Are Using Photos and Audio to Train Their AI
Read Time:41 Second
An Australian news agency is reporting that robot vacuum cleaners from the Chinese company Deebot are surreptitiously taking photos and recording audio, and sending that data back to the vendor to train their AIs.
Ecovacs’s privacy policy—available elsewhere in the app—allows for blanket collection of user data for research purposes, including:
The 2D or 3D map of the user’s house generated by the device
Voice recordings from the device’s microphone
Photos or videos recorded by the device’s camera
It also states that voice recordings, videos and photos that are deleted via the app may continue to be held and used by Ecovacs.
No word on whether the recorded audio is being used to train the vacuum in some way, or whether it is being used to train a LLM.
Slashdot thread.
Former RAC Employees Get Suspended Sentence for Data Theft
Read Time:5 Second
Two former RAC employees have been handed suspended prison sentences for trading in personal data
Over 240 Million US Breach Victims Recorded in Q3
Read Time:6 Second
Supply chain victim numbers surge as more than 240 million US residents are impacted by data breaches in Q3 2024