First, over a million DNA profiles from GEDmatch were leaked. Then, email addresses from the breach were used in a phishing attack against users of genealogy website MyHeritage.
As a result of this breach, all user permissions were reset, making all profiles visible to all users. This was the case for approximately 3 hours. During this time, users who did not opt in for law enforcement matching were available for law enforcement matching and, conversely, all law enforcement profiles were made visible to GEDmatch users.
If GEDmatch sounds familiar, it was the DNA database used to identify the Golden State Killer.
Charlotte Henry joins host Kelly Guimont to discuss Security Friday news items and tips, and the twelfth birthday of the App Store.
US Cyber Command, DHS, and FBI have exposed a new North Korean campaign of malware and phishing, with six new families of malware.
Andrew Orr and Charlotte Henry join host Kelly Guimont to talk about a couple of PSAs for Apple folks and how Siri and Spotify might team up.
Are robocall-blocking apps on your iPhone trustworthy? It seems some have bypassed Apple’s scrutiny.
For the past several days I’ve seen a new dialog box whenever I tap on a link in ProtonMail for iOS. It turns out that it’s a new ProtonMail anti-phishing feature.
Another security improvement is our new link confirmation modal, which is now enabled by default on all our apps. This anti-phishing feature helps you avoid opening a link by mistake or going to a different page than you intended.
Hackers, thieves, and independent repair companies can find ways to break into iCloud-locked iPhones.
The iCloud security feature has likely cut down on the number of iPhones that have been stolen, but enterprising criminals have found ways to remove iCloud in order to resell devices…Making matters more complicated is the fact that not all iCloud-locked phones are stolen devices—some of them are phones that are returned to telecom companies as part of phone upgrade and insurance programs.
TL;DR: Phishing, mugging, and social engineering are methods. You can even remove the CPU and reprogram it by stealing an unused IMEI.
Millions of people were affected for 10 days in March by a spam email operation. But the spammer didn’t set a password for their server (via TechCrunch). [Apple Support Scam is a new Voice Phishing Trick] Email Spam It’s a fascinating story. Security researcher Bob Diachenko found the server after the operation. The spammer had…
Former school teacher Christopher Brennan—Celebgate hacker—was recently sentenced to 34 months in prison after pleading guilty.
Email scams are increasingly involving iTunes gift cards, instead of the old wire transfers. Lily Hay Newman as the scoop.
This trend is on the rise among scammers, both for individual targets and organizations. The Federal Trade Commission reported in October that 26 percent of people who report being scammed in 2018 said they bought or reloaded a gift card to deliver the money, up from seven percent in 2015. The FTC says that gift card-related losses reported to the agency totaled $20 million in 2015, $27 million in 2016, $40 million in 2017, and $53 million in the first nine months of 2018 alone.
Brian Krebs reported today that a woman got an Apple Support scam via an automated phone call. And it looked like a legitimate call from Apple.
Andrew Orr joins Kelly Guimont to talk about Apple’s ¯\_(ツ)_/¯ response to bent iPads and the latest phishing email making the rounds.
People have reported getting a fake receipt claiming to be a purchase confirmation by Apple.
Apple has apologized over a string of Chinese Apple ID hacks. Certain Apple customers were victims of a phishing attack.
Here’s what the bad guys are trying to do with this attack and what you can do to avoid it.
Bryan Chaffin and Andrew Orr join Jeff Gamet to look at how Apple’s free 200 GB iCloud storage for two months offer underscores how the standard 5 GB is far too low, plus they look at a new phishing scam Bryan encountered.
In an email they sent to me, they shared that some of the hacking tools are very cheap, going for US$2 or less each.
Here’s what to do if you think you were just tricked by a phishing email or message, and what to look for to minimize the risk of getting hooked.
John Martellaro and the Maccast’s Adam Christianson join Jeff Gamet to look at ways to spot phishing emails, plus they discuss the conundrum of when to buy a new Apple Watch.
Scammers are crafting more sophisticated and realistic looking emails to trick you into handing over your credit card number so here are some tips to protect yourself.