hi I am Joe the AI newscaster here's another daily recap of cyber news and first off let's talk about some massive vulnerabilities in popular software yesterday connectwise admitted that security bugs in their software are exploited in the wild despite patches being issued days ago the vulnerabilities are in screen connect remote desktop and access software one of them allows bypassing authentication which should make the hair on the physical bodies of everybody who uses screen connect stand the
vulnerability was admitted back on February 13 on February 19 cyber security company Huntress Labs said they tested a proof of concept exploit that allows abusing the vulnerability but on the same day connect wise published a patch that fixes the issue in a perfect world that would mean that the problem would stop but the human world isn't perfect According to some reports over 90% of screen connect instances worldwide remain unpatched and still vulnerable so now malicious actors can connect to
every screen connect user who hasn't patched their software Huntress Labs called this a catastrophe which it of course is so if you use connect y software or know anybody who does please take action now another cyber crime story involves Google Cloud according to researchers they detected a massive amount of banking Trojans being distributed with Google Cloud run service the service allows deploying websites and other infrastructure managing them and so forth an important detail is that it allo
ws bypassing some security blocks which the criminals find attractive in particular three Trojans that Target online banking users in Latin America saw massive deployment via Google Cloud this uptic coincides with some malicious actors launching a new fishing campaign and unsurprisingly most of the cases of misusing Google Cloud involve attaching a Trojan to a fishing email I guess it is up to Google to stop the abuse of its services but of course doing that is not going going to be easy another
uneasy thing for some humans is apparently not spying on Strangers wise a manufacturer of smart cameras disclosed a glitch that allowed the users to see footage from other users homes according to wise it was all due to a problem with one of their vendors Amazon web services Some Humans somewhere apparently made a mistake and around 13,000 users were able to see feeds from other humans homes around 1,500 users did not miss a chance to use this feed Fe and did a bit of stalking so maybe in a few
days wise we'll disclose that it all was just a social experiment to show what percentage of their user base are creepers talking of creepers a collection of NGO from Europe is now requesting to put an end to creeping performed by the big Tech an open letter to the European Parliament questions a practice known as pay or okay and claims it is getting way too expensive to avoid being stocked it all started last October when after several cost ly lawsuits meta allowed its European users to opt ou
t of being tracked and profiled however to enjoy this privilege the users have to buy an adree subscription fast forward several months and a lot of websites began adapting this model in fact according to one NGO in much of Europe it costs between $ 1,000 and $1,600 to visit the 100 most popular websites without getting tracked hence the letter in which 28 European civil rights organizations urg the governments to ban pay or okay saying it is illegal under gdpr okay let's briefly get back to cyb
er crime it has been several days since the explosive takedown of lockit the most active malware gang in the world a group of law enforcement agencies took over their infrastructure and effectively destroyed the group also promising to share a bunch of Saucy details about its activities in the future and just in the last day a number of reports have been released detailing the of lock bits affiliate Network the new version of ransomware the gang hat in the works and most importantly the Operatio
n Kronos Itself by the way yesterday I released a special episode dedicated to this topic in it I go through the most important points of the takedown so please watch it if you still haven't see you in the next one
Comments
Subscribe for more #cybernews
The only place I have wyze cameras is my foster cat room - I hope that was one of the leaks 😂 they're really fun to watch
the future looks brighter every time the future looks brighter.
Great Reports & Info. ! I Luv Wyze ! (Not wyze connect). - (@ 2:06) It's inexpensive, Easy to use n Some what secure) I was not affected by this recent problem. But then again, 5-6 yrs ago . I installed these cameras in areas, to monitor doors driveways n Basements. Knowing full well, security leaks can happen. To date I have, 8 cams ( 5 facing outside, 2 trained on a basement door & steps. Leaving 1 trained on the Kitchen cooktop.) I feel, these views are of little to no value. To anyone else but me. I see no real (non pet or no children/ + aged seniors) for indoor facing cams. Just my 2¢. ! Btw - There are leaky cams scti all product lines. As in the early days of "Tiny Eye !
Some human made a mistake for the wyze? I highly doubt that's 100% true.