Tag Archive for: dumps

Google Play dumps APKs for the more Google-controlled “Android App Bundle”


Source…

Bad password practices. Data scraping and data dumps. Sidestepping privacy protections. No honor among thieves.


At a glance.

  • Password users behaving badly.
  • Implications of the Facebook data dump.
  • Sidestepping Apple privacy policies.
  • Crooks mistreating other crooks.
  • Comment on the LinkedIn data scraping incident.

Passwords: out of sight, out of mind. (And out of control.)

There’s a battle raging between two conflicting forces: the need for secure passwords, and the frailty of human memory. The LastPass Blog explores the results of a recent survey they conducted on two thousand Americans and their password habits. While 70% feel they have too many passwords to remember, on average they use the same password over six sites. And with the surge in remote work meaning most individuals need to access various accounts on multiple devices, 65% experience anxiety when they realize they’re using a device that doesn’t have the password they need. SiliconANGLE notes that, according to the Workplace Password Malpractice Report, 62% of US employees write their passwords down on a piece of paper. TechRadar adds that while a whopping 81% store that piece of paper right next to the device the password is meant to protect, and 67% admit they don’t even know where that paper is. Nearly half store their passwords in an unprotected document in the cloud, and troublingly, nearly two-thirds have shared their password with someone via text or email. 

What does the Facebook data leak mean for Facebook users?

Now that the Facebook data leak is front-page news, the big question has become, what can users do if they fear they’re among the half-billion individuals exposed? Forbes explores the difficulty of trying to protect oneself in this type of situation. If it were just passwords that were exposed, changing login info would be an easy fix. But these hackers leaked data like names, birthdates, and addresses — things that are difficult to change on a whim — and all for free. 

CyberNews shares the views of several industry experts. “Putting it out for free also provides some cover should anyone try to trace the stolen data back to its source. Yet another explanation could be that a competing criminal element or other entity put the data out there to demonetize it and take value away from the criminals,” said…

Source…

Rogue FBI Twitter Bot dumps months of FOIAs, causing controversy

Enlarge / Vintage wind-up tin toy bird on a white background. (credit: Valerie Loiseleux, Getty Images)

On Oct. 30, a long-quiet FBI Twitter account began releasing a torrent of links to documents on the bureau’s Freedom of Information Act (FOIA) library server. Among the documents were several from the investigation into former Secretary of State Hillary Clinton’s use of a private e-mail server and a decade-old investigation into the Clinton Foundation over a pardon given by President Bill Clinton at the end of his term. According to an FBI official, the flood of tweets occurred because of a backlog of updates dating to June. The logjam finally broke when a content management system software patch was installed last week.

The timing of the releases—which also included documents from the investigation of former CIA director David Patraeus for leaking classified information and links to video surveillance from the 2015 protests in Baltimore—drew speculation from many on Twitter that someone at the FBI was trying to damage the presidential campaign of Hillary Clinton in the final weeks before Election Day. In response to an initial inquiry by Ars, the FBI sent the following statement:

The FBI’s Records Management Division receives thousands of FOIA requests annually which are processed on a first-in, first-out (FIFO) basis. By law, FOIA materials that have been requested three or more times are posted electronically to the FBI’s public reading room shortly after they are processed. Per the standard procedure for FOIA, these materials became available for release and were posted automatically and electronically to the FBI’s public reading room in accordance with the law and established procedures.

That, however, did not explain the mass of FOIA document tweets beginning on Oct. 30, which also included a number of seemingly random documents, including files from an investigation into inventor Nikola Tesla. Some news outlets, including the politically liberal site ThinkProgress, reported that the FBI had launched an “internal investigation” into the tweets.

Read 3 remaining paragraphs | Comments

Technology Lab – Ars Technica

Google dumps Symantec SSL certificates in Chrome, Android – iT News


iT News

Google dumps Symantec SSL certificates in Chrome, Android
iT News
Google's products will no longer trust Symantec's digital certificates used to secure internet data communications, the company said. Starting 2 December Australian time, Symantec's Class 3 Public Primary Certificate Authority (CA) root certifcate is

and more »

“android security” – read more