My wife got a fraud call from the bank today. Took a while to get to the bottom of it at first we weren’t sure if it was a genuine bank call. She then called in herself and indeed there was a dodgy transaction using Apple Pay about 3pm this afternoon nowhere near us in a clothes shop. We can’t work out how it’s happened, she’s not given anyone any info bank auth number for adding cards is correct and making payments need biometrics. Any ideas?
@0x58 Only £21 this time and it got rejected bank have replaced her card and I’ve got her to change passwords for Apple ID and bank password and memorable word. Not sure what else we can change
🔥 Hot off the press! Co-authored blog with esteemed colleague Sambit Misra on #IBMSecurityIntelligence.com about SaaS Security Posture Management: *"Is Your Critical SaaS Data Secure?"*¨
Just watched a video from a large intl company proposing a system for K-12 schools using #FacialRecognition to allow students & staff access, to detect former students on campus, to block access to non-custodial parents & sex offenders and more. All using AI based facial recognition.
Leaving aside issues of accuracy, just think about the database of personal information behind that. Then think about this:
1Password says a recent incident that caused customers to receive notifications about changed passwords was the result of service disruption and not a security breach.
The company first revealed in an incident report five days ago that the notifications were erroneous and linked to routine database maintenance scheduled on Thursday, April 27th.
Today, 1Password chief technology officer (CTO) Pedro Canahuati provided more details and said the customers' information was unaffected.
Ikona kłódki w pasku adresu przeglądarki już od dawna nie oznacza, że odwiedzana strona jest bezpieczna. Oszuści rzadko teraz rezygnują z certyfikatów SSL, bo ich zdobycie nie stanowi większego problemu - wystarczy za darmo skorzystać z Let’s Encrypt. Google zdaje sobie z tego sprawę i dlatego z kłódki rezygnuje:
@chlopmarcin w czasach internetu łupanego (gdy certyfikaty SSL swoje kosztowały i tylko większe instytucje/firmy mogły sobie na nie pozwolić) to miało sens, ale teraz - gdy prawie wszystko leci po HTTPS - stosowanie kłódek mija się z celem