Google has unveiled a spate of security enhancements to products in its Google Workspace collection including Gmail and Drive. Artificial intelligence is helping to steer some of the changes, automating specific tasks. The upgrades take a new approach, combining the idea of zero trust with the concept of data loss prevention (DLP). Under zero trust, all users, devices and components are considered untrustworthy at all times — even those within an organization’s network. These Workspace tools are in development or at various stages of testing, but Google says they will begin going live in general release later this year and into Q1 2024. Continue reading Google Is Using AI to Bring Zero Trust Security to Workspace

Twitter revealed that the Federal Trade Commission may hit it with a fine up to $250 million for using consumers’ email addresses and phone numbers — collected for “safety and security” purposes — to target ads, something it said it did “inadvertently” between 2013 and 2019. This is a violation of its 2011 agreement with the FTC, in which Twitter agreed that it would no longer mislead consumers by not disclosing other potential uses. Twitter has already received a draft complaint from the FTC. Continue reading FTC to Fine Twitter for Using Consumer Data for Targeted Ads

More than 419 million records of Facebook users in the United States, United Kingdom and Vietnam — including Facebook IDs and user phone numbers — were recently found online (although Facebook disputes that number). The exposed server was reportedly not password-protected, which suggests the database was accessible to anyone. The server contained user data across multiple databases that could potentially enable spam calls and SIM-swapping attacks. According to Facebook, the breach involved user data collected prior to the introduction of new security measures. The company has since taken the exposed data set offline.  Continue reading Exposed Database of Facebook User Data Is Found Online

In the wake of May’s Equifax website breach that reportedly involved personal data of 145.5 million U.S. consumers, the credit reporting service’s site was manipulated again this week. On Wednesday, and again on Thursday, fraudulent Adobe Flash updates appeared that infected computers with adware when clicked. Only three of 65 antivirus providers detected the adware. Security analyst Randy Abrams discovered the issue while investigating false information that had appeared on his credit report. Meanwhile. federal legislators have introduced a new cybersecurity bill to help protect consumers. Continue reading Clicking Flash Update on the Equifax Site Results in Adware

Yahoo announced yesterday that all 3 billion of its user accounts were affected by a previously disclosed August 2013 cyberattack, originally reported by the company as affecting 1 billion accounts. Yahoo had earlier reported that a separate 2014 attack affected 500 million accounts. Last year we learned that, “digital thieves made off with names, birth dates, phone numbers and passwords of users that were encrypted with security that was easy to crack,” according to The New York Times. “The intruders also obtained the security questions and backup email addresses used to reset lost passwords.” Continue reading Security Update: 3 Billion Yahoo Accounts Hit in 2013 Attack

Yahoo has issued another warning that users’ personal data may have been compromised. In addition to the malicious activity reported in December that involved more than 1 billion user accounts in 2013-2014, following the September report regarding a separate theft of 500 million records, the Internet company is now notifying users that additional accounts were compromised between 2015 and 2016. “The stolen data included email addresses, birth dates and answers to security questions,” reports CNBC. The hacks involved “the use of ‘forged cookies’ — strings of data which are used across the Web and can sometimes allow people to access online accounts without re-entering their passwords.” Continue reading Yahoo Warns Users: Hackers Forged Cookies to Access Data

Following the iCloud security breach involving controversial celebrity photos, Apple is trying to regain consumer trust by encouraging users to utilize their new and pre-existing security features. The company revealed how it encrypts messages and offered tips for protecting user data in a newly-launched website. In the open letter, Apple CEO Tim Cook takes a swing at Google for monetizing users’ private data and reassures Apple users that their data is safe from the government. Continue reading Apple’s Open Letter Explains Privacy Tips, Security Methods

Apple CEO Tim Cook confirmed that the hackers responsible for recently leaking nude photos of celebrities were able to break into the celebrities’ iCloud accounts. The company plans to add additional security alerts to help prevent future security breaches. In the next two weeks, Apple users will start receiving notifications when someone tries to change an account password, restore iCloud data to a new device, or when a new device logs onto the account for the first time. Continue reading Apple to Add Security Alerts Following Celebrity Photo Leaks

The Federal Trade Commission recently charged Snapchat of deceiving users about the privacy of their personal data and their image and video messages. Under the terms of a new settlement with the FTC, Snapchat will be required to implement a privacy program that will be independently monitored for the next 20 years. If Snapchat violates the agreement, the company may be subject to fines. Snapchat has reportedly resolved most of the privacy issues over the past year. Continue reading Snapchat Agrees to Settle with FTC Over Deceptive Marketing

As the next step in the ongoing privacy debate sparked by the actions of Edward Snowden, the White House has released a report that recommends the government create limits on how companies make use of the information they gather online from customers. The report’s chief author is John Podesta, a senior White House adviser. Private companies fear a government initiative that could regulate how they profit from data gathered through mobile communication and Internet surfing habits. Continue reading Government Considers Limits on Customer Data Collection

Maker Studios announced that Disney’s offer to acquire the YouTube multichannel network (MCN) has been approved by a majority of its shareholders, despite Relativity Media throwing its hat in the ring with a surprise bid of $1.1 billion (mostly stock) on Sunday. Also, the Superior Court for the State of California in L.A. yesterday rejected a request by former Maker executives, including former CEO Danny Zappin, seeking to block the shareholder vote on the proposed Disney acquisition. Continue reading Maker Studios Says Disney Offer Approved by Shareholders