InfoSec News Nuggets 12/20/2022

Fortnite video game maker to pay $520m over privacy and billing claims The video game company Epic Games will pay a total of $520m in penalties and refunds to settle complaints involving children’s privacy and methods that tricked players into making purchases, US federal regulators said on Monday. The Federal Trade Commission (FTC) said that it had secured the record-breaking settlements for two cases from Epic Games, which makes the popular game Fortnite. “Epic used privacy-invasive default settings…
Read More

InfoSec News Nuggets 05/26/2021

1 - Russia makes good on its threat to fine Google over 'illegal' internet content Russian authorities on Tuesday fined Google 6 million rubles, or just under $82,000, after the company failed to comply with Moscow's demands to delete prohibited online content. On Monday, Russia's internet watchdog, Roskomnadzor, gave Google 24 hours to delete more than 26,000 instances of online media considered to be illegal in the country. If their demands weren't met, authorities threatened to…
Read More

InfoSec News Nuggets 02/23/2021

Clubhouse Chats Are Breached, Raising Concerns Over Security A week after popular audio chatroom app Clubhouse said it was taking steps to ensure user data couldn’t be stolen by malicious hackers or spies, at least one attacker has proven the platform’s live audio can be siphoned. An unidentified user was able to stream Clubhouse audio feeds this weekend from “multiple rooms” into their own third-party website, said Reema Bahnasy, a spokeswoman for Clubhouse. While the…
Read More

InfoSec News Nuggets 11/30/2020

Networking equipment vendor Belden discloses data breach American networking equipment vendor Belden said it was hacked in a press release published earlier this week. Belden says the security breach took place after hackers gained access to a limited number of its file servers.  The intrusion was detected after the company's IT personnel detected unusual activity involving the compromised servers. A subsequent investigation revealed that the intruders had copied data of some current and former employees, as well…
Read More

InfoSec News Nuggets 10/08/2020

Twitter is testing how its misinformation labels can be more obvious, direct Twitter’s Yoel Roth said the company is exploring changes to the small blue notices that it attaches to certain false or misleading tweets, to make these signals more ‘overt’ and be more ‘direct’ in giving users information. But he did not say whether any new versions would be ready before the U.S. election in the next four weeks, a period that experts say…
Read More

InfoSec News Nuggets 2/19/2020

1 - IRS Urges Taxpayers to Enable Multi-Factor Authentication The US Internal Revenue Service (IRS) and Security Summit partners urged tax professionals and taxpayers today to enable multi-factor authentication (MFA) in their tax preparation software products to defend against data theft. "Already, nearly two dozen tax practitioner firms have reported data thefts to the IRS this year," the IRS said. "Use of the multi-factor authentication feature is a free and easy way to protect clients and practitioners' offices…
Read More

InfoSec News Nuggets 10/14/2019

Gamers Warned of High-Severity Intel, Nvidia Flaws Chip giants Intel and Nvidia have stomped out high-severity flaws in two popular products, both commonly used by gamers. Impacted are the Nvidia Shield TV and Intel NUC (short for Next Unit of Computing) mini-PC kit. Nvidia Shield TV is a media streaming box (powered by Nvidia’s Tegra X1 system-on-chip) that runs on the Android operating system and can be used for gaming and media streaming. Intel’s NUC mini-PC…
Read More

InfoSec News Nuggets 9/20/2019

Documents reveal how Russia taps phone companies for surveillance In cities across Russia, large boxes in locked rooms are directly connected to the networks of some of the country’s largest phone and internet companies. These boxes, some the size of a washing machine, house equipment that gives the Russian security services access to the calls and messages of millions of citizens. This government surveillance system remains largely shrouded in secrecy, even though phone and web companies…
Read More