NEW YORK, NY - One of the world's leading global hotel groups disclosed that a guest reservation database, which covers a number of major hotel brands, suffered a large data breach. An internal investigation showed that unauthorized access had been occuring since 2014. The intrusion went unnoticed for four years by Starwood, which was acquired by Marriott in 2016 for $13.6 billion. It was uncovered in early September, when a security tool alerted Marriott officials to an … [Read more...]
New Facebook Data Breach Effecting 50 Million Accounts; Doubling Security Staff
NEW YORK, NY - On Friday, September 28, 2018 Facebook said that an attack on its computer network had affected the personal information of nearly 50 million users. The attackers exploited the "View As" feature that allows users to see their Facebook page the way someone else would. This could allow the attackers to take over Facebook accounts. Facebook has fixed this issue and informed law enforcement. They also do not know if the affected accounts were misused or if user … [Read more...]
15 Minute Hot Seat with Mark Zuckerberg on Cambridge Analytica Data Privacy Breach
NEW YORK – Yesterday, March 21, 2018, Mark Zuckerberg, the CEO of Facebook, sat with CNN Money’s Laurie Segall in a candid, and what appeared to be a difficult interview to answer tough questions on Facebook’s position in regard not only to the recent leaks related to the user privacy breach caused by Cambridge Analytica, but also its position on whether or not it’s platform has been used to influence past elections and what the company is doing to avoid this type of … [Read more...]
Bad News: Beware and “Be Aware” of “Meltdown” and “Spectre” Vulnerabilities
NEW YORK, NY - As the title suggests, you should both Beware, and "Be Aware" of these new security vulnerabilities that effect pretty much every Intel processor since 1995. I say "Be Aware" because although their patches available, there is not much that can be done to fully mitigate this issue until all or most computer hardware is redesigned. This is bad news because everyone is effected, and all computers are going to need to be replaced, it seems. Meltdown and Spectre … [Read more...]
Big Deal: Another Popular WordPress Plugin Purchased by Nefarious User
NEW YORK - A few months ago in September, I wrote about a plugin (Display Widgets Plugin) which was sold to someone who used it to compromise over 200,000 websites as that’s about how many installs it had and sites it targeted with compromising intentions. Well, it was a big deal then and it’s an even bigger deal now because it has come to light that this same tactic of acquisition has been used yet again, with (Captcha Plugin) to compromise 300,000 sites. According to … [Read more...]
Be Prepared for Clever Scams & Tactics
I often write about security, privacy and other important personal safety issues such as being and keeping aware of security vulnerabilities, email threats and phishing scams..... It is often very simple precautions you can take which will save you a lifetime of headaches. With this type of material in mind, I received the following tips by email over the weekend from a family member and they are seem like they are worth sharing (rather than just deleting) as they will keep … [Read more...]
New Threat to WordPress Sites Designed to Bypass All Ordinary Security Measures
NEW YORK, NY - It seems like a new security threat is born each day; maybe that is because there is. For those who operate WordPress sites, including myself, there is a new threat to consider that is designed to bypass ordinary security measures; a simple back door, you have already left wide-open, by choice. WordPress Plugins are great additions to any WordPress site as they create all sorts of easy plug-and-play options and make often complicated features simple to … [Read more...]
Major Security Vulnerability Due to IDN Domains; Don’t Get Phished Out of Business
NEW YORK, NY - This is the most dangerous and convincing phishing trick I have ever seen before. It’s so amazingly horrible it will fool even the smartest computer users and it’s an issue that all browser companies should be fixing immediately. Browsers should be updated to prevent these Unicode domains from being translated. Once again our friends at WordFence are keeping all of us safe with critical information on this phishing trick and helping build awareness about … [Read more...]
Misfortune Anyone? This Dangerous Vulnerability Could Be Lurking In Your Network Router
NEW YORK, NY - Misfortune Anyone? Today, WordFence [I really love these people], a company whom distributes a popular security plugin for WordPress websites, released a great article about a vulnerability on computer networks that is being exploited. With the article they also included a simple button which you can use to scan your network's vulnerability, so that if you are vulnerable to this Internet router exploit, you will know about it ASAP and can begin hounding … [Read more...]
New York Releases Tips to Avoid Falling Victim to Cybercrime; Commemorates National Data Privacy Day
NEW YORK, NY - A host of New York State government agencies today announced important tips consumers and businesses can follow to protect their online privacy and information from unscrupulous scammers. These helpful steps and reminders from the Department of State, Office of Information Technology Services, Department of Taxation and Finance, Department of Financial Services and the Division of Homeland Security and Emergency Services help commemorate National Data Privacy … [Read more...]