It’s been reported that iOS 17’s new NameDrop feature has prompted the Police to issue warnings to parents on social media (in the US) about its potential to be abused, possibly posing a risk to their children. NameDrop, introduced with iOS 17.1 in November allows those with iPhones and Apple Watches running watchOS 10.1 to share their contact information, (plus photos and more…
Researchers from cyber security firm Hunters have reported finding a Google Workspace design flaw that could allow attackers to steal emails from Gmail, data from Google Drive, and carry out other unauthorised actions within Google Workspace APIs on all of the identities in a target domain. The design flaw (a fact reportedly disputed by Google), dubbed ‘DeleFriend,’ can be…
Following research, identity proofing experts ID R&D have warned businesses that there has been a rise in the number of fraud attempts and cyberattacks leveraging deepfake technology, i.e. the use of AI-powered technology to create convincing videos of people. Research indicates that nearly half (42 per cent) of organisations have already encountered deepfake attacks. ID R&D has also warned…
The German Data Protection Conference (DSK) has banned the use of Microsoft Office 365 in German schools over an alleged lack of transparency about how personal data is processed, and the potential for third-party access to it. The ban has also been issued because the DSK believes the use O365 is not legally compliant with GDPR, i.e. it may…
Password app company LastPass has reported a second data breach that may be related to a previous breach in August where source code and some proprietary LastPass technical information were taken. The company has reported that in this most recent attack, a threat actor using information from August’s attack accessed “certain elements of our customers’ information.” LastPass says, however,…
Kaspersky has warned users about the dangers of malicious WhatsApp knockoff apps YoWhatsApp and WhatsApp Plus. Although both appear to offer the same functionalities as the real WhatsApp, they are reported to be able to download the Triada Trojan to smartphones, and steal legitimate WhatsApp’s access keys, thereby giving attackers access to the user’s real WhatsApp account. The advice…
New research by Atlas VPN claims that Google’s Chrome browser has had 303 discovered vulnerabilities this year, and that an unusually high number of cumulative vulnerabilities have been spotted in the browser. The advice is to make sure that your browser is up to date, care is taken if choosing plugins, and to look out for potential phishing emails.
Energy regulator Ofgem is warning consumers to beware of scam email messages claiming to offer discounts on energy bills. The phishing scam messages invite recipients to apply for the £400 “non-repayable discount” by following a link to a fake Ofgem phishing website to provide personal details and set up a direct debit to receive the money. The advice is…
A fine was imposed on Halfords by the UK’s privacy regulator after numerous complaints were raised about a marketing email encouraging people to redeem a £50 voucher. Even though Halfords maintained that the £50 government-backed voucher represented a legitimate interest, the ICO said it was a marketing email which they would derive income from, which meant it was therefore…
With identity theft, and the resulting identify fraud becoming more widespread, we look at how to spot the signs that you may be a victim, the effects on victims, and how to reduce the risk of having your identity stolen and used for fraud. What Are Identity Theft and Identity Fraud? Identity theft is when personal details of a…
