AboutDFIR.com – The Definitive Compendium Project
Digital Forensics & Incident Response

Blog Post

InfoSec News Nuggets 5/26/2020

Home Chef announces data breach after hacker sells 8M user records

Home Chef, a US-based meal kit and food delivery service, announced a data breach today after a hacker sold 8 million user records on a dark web marketplace. Last week, BleepingComputer reported that a hacking group actor named Shiny Hunters was selling the user records for eleven companies on a dark web marketplace. The threat actor was selling these databases for $500 to $2,500. The user records for Home Chef was one of the databases being sold and allegedly contained 8 million user records. The threat actor was selling this database for $2,500 and provided a sample showing the type of information in the database table.

 

Civil liberties groups are urging Congress to block the FBI from viewing Americans’ web-browsing history without a warrant

Pressure is mounting from civil liberties groups in opposition to a bill that would grant the FBI sweeping new surveillance powers, including the ability to view Americans’ web-browsing and search history without a warrant. The measure moved one step closer to becoming law last week. It was first introduced by Senate Majority Leader Mitch McConnell as part of a bill to reauthorize the 2002 Patriot Act, including language that would let the FBI access people’s browsing records if they’re deemed relevant to an investigation without first getting a judge’s approval.

 

Mozilla, Twitter, Reddit join forces in effort to block browsing data from warrantless access

A group of seven internet companies are vowing to stand up for the privacy of its users this week when the United States House of Representatives considers the USA FREEDOM Reauthorization Act of 2020. Mozilla, Engine, Reddit, Reform Government Surveillance, Twitter, i2Coalition, and Patreon have asked four US legislators to explicitly prohibit the warrantless collection of internet search and browsing history. “We hope legislators will amend the bill to limit government access to internet browsing and search history without a warrant,” the Firefox-maker said in a blog post. “Too much search and browsing history still is collected and stored around the Web. We believe this data deserves strong legal protections when the government seeks access to it, but in many cases that protection is uncertain.”

 

U.S. Blacklists Dozens of Chinese Companies Working on AI, Face Recognition Tech

The U.S. Commerce Department has put another 33 Chinese businesses—many of which develop artificial intelligence and face recognition tech—on its economic blacklist as a punitive measure for purportedly conspiring with Beijing and the government’s brutal crackdown on Muslim minorities. The department’s so-called “entity list” bans blacklisted companies from using U.S.-made tech in their devices. Established via executive order last May, it includes Huawei, the world’s largest telecommunications equipment manufacturer, along with 68 affiliates accused of acting as proxies for Chinese espionage agencies.

 

Inside the NSA’s Secret Tool for Mapping Your Social Network

IN THE SUMMER of 2013, I spent my days sifting through the most extensive archive of top-secret files that had ever reached the hands of an American journalist. In a spectacular act of transgression against the National Security Agency, where he worked as a contractor, Edward Snowden had transmitted tens of thousands of classified documents to me, the columnist Glenn Greenwald, and the documentary filmmaker Laura Poitras. One of those documents, the first to be made public in June 2013, revealed that the NSA was tracking billions of telephone calls made by Americans inside the US. The program became notorious, but its full story has not been told.

Related Posts