InfoSec News Nuggets 04/18/2023

Payments Giant NCR Hit by Ransomware  NCR first reported investigating an “issue” related to its Aloha restaurant point-of-sale (PoS) product on April 12. On April 15, the company said a limited number of ancillary Aloha applications for a subset of its hospitality customers had been impacted by an outage at a single data center. “On April 13, we confirmed that the outage was the result of a ransomware incident. Immediately upon discovering this development we began…
Read More

InfoSec News Nuggets 12/08/2021

Researchers discover 14 new data-stealing web browser attacks IT security researchers from Ruhr-Universität Bochum (RUB) and the Niederrhein University of Applied Sciences have discovered 14 new types of 'XS-Leak' cross-site leak attacks against modern web browsers, including Google Chrome, Microsoft Edge, Safari, and Mozilla Firefox. These types of side-channel attacks are called 'XS-Leaks,' and allow attacks to bypass the 'same-origin' policy in web browsers so that a malicious website can steal info in the background…
Read More

InfoSec News Nuggets 6/10/2020

Apple adds anonymous symptom and health info sharing to its COVID-19 app and website Apple has updated its own COVID-19 iOS app and website with new features to allow users to anonymously share info including their age, existing health conditions, symptoms, potential exposure risks and the state in which they’re located. This info, which is not associated with any of their personal identifying data in any way according to the company, will be used in an aggregated way to…
Read More