Technology: Huge security flaw exposes biometric data of more than a million users - PressFrom - US
  •   
  •   
  •   

TechnologyHuge security flaw exposes biometric data of more than a million users

14:30  14 august  2019
14:30  14 august  2019 Source:   theverge.com

Zoom security flaw could let websites turn on your Mac’s webcam without permission

Zoom security flaw could let websites turn on your Mac’s webcam without permission Security researcher Jonathan Leitschuh details the flaw that could let websites hijack your Mac's camera and "forcibly" join you to a Zoom call without your permission. About four million of Zoom’s users are on Mac. The way the vulnerability works is as follows. Zoom gives users an easy way to dial into video conference calls with the tap of a link — something like https://zoom.us/j/999999999, where ‘999999999’ is a random 9-digit meeting ID that expires once the meeting ends.

MyHeritage said the information exposed involved users who had signed up for the service through October 26, 2017, the date of the breach. The security researcher reported finding no other data related to the company on the server where the file was found. And MyHeritage says there's been no

Biometrics are definitely better than passwords when it comes to security , but they aren't fool-proof. Here are the three main reasons biometrics aren't Biometric technology will become commonplace sooner rather than later. Bank of America recently started piloting a biometric system from Samsung

A huge cache of unsecured biometric credentials and personal information has been discovered by security researchers, The Guardian reports. The breach, which was discovered by researchers Noam Rotem and Ran Locar alongside vpnMentor, included the fingerprint data of more than 1 million people, facial recognition information, unencrypted usernames and passwords, and other personal information of users of Suprema’s Biostar 2 security platform. The information, which included a total of 27.8 million records totalling 23 gigabytes of data, was found in a publicly accessible database, although it’s unclear whether any malicious actors accessed the data while it was unsecured.

Zoom will remove server behind Mac webcam security hole

Zoom will remove server behind Mac webcam security hole Zoom is acting quickly on the security flaw that let intruders hijack Mac users' webcams. The video conferencing firm is releasing a patch on July 9th (that's today, if you're reading in time) that removes access to the local web server behind the vulnerability. It'll also let you manually uninstall Zoom and remove all traces of the app so that there's no chance of an exploit later on. Another update, due for the weekend of July 12th, will also ensure that rookies who choose "always turn off my video" will automatically have their preferences honored in those situations where a meeting host would normally require that video switches on.

Biometric technology can be used for everything from shopping apps to police work, but it Although many experts say biometrics are intrinsically secure (since no one else can have your ears or The Federal Trade Commission is leading the charge on data security . The FDA deals with the security

suffers from a security issue that can expose the information of its more than 3 million daily users , including the location data of people who Cooper Quintin, a security researcher at the Electronic Frontier Foundation, reviewed Faden’s findings and confirmed the flaw . “There are a million reasons

Huge security flaw exposes biometric data of more than a million users© Illustration by Alex Castro / The Verge

Biostar 2 is a security system used by organizations around the world to secure commercial buildings. vpnMentor notes that the system is used to control access to facilities in the USA, UK, Japan, India, and the UAE. Since the breached information included usernames and passwords, it could allow would-be hackers to create or modify user credentials, allowing them access to any building secured using Biostar 2.

Biometric fingerprint information cannot be changed once exposed

The breach could also have implications for any employees enrolled in the security system. Personal information exposed could be used to commit identity fraud, and the fingerprint data (which was stored in an unencrypted format) could be used to gain access to any other systems secured using these same biometric credentials. Most worrying is the fact that you can’t change a fingerprint like you would a compromised password if it gets exposed like this.

Flaw in Facebook kids app let children chat with unapproved users

Flaw in Facebook kids app let children chat with unapproved users The error undercuts the purpose of Messenger Kids.

A security hole in a mail preview program from the U.S. Postal Service could have exposed the data of more than 60 million customers, giving third parties access to The anonymous researcher who alerted him claims to have alerted postal authorities about the issue more than a year ago.

And more importantly, which offers better security : biometrics or passwords? Apple's Face ID is just one of many biometric authentication applications. Biometric authentication works by comparing two sets of data : the first one is preset by the owner of the device, while the second one belongs to a

As well as being used to secure buildings around the world, The Guardian notes that Supreme recently announced that its Biostar 2 platform would be integrated into AEOS, a separate security system used across 83 countries by organizations including governments, banks, and the UK’s Metropolitan Police service.

Although the security vulnerability has now been fixed, the security researchers said that Suprema were largely unresponsive and uncooperative after they reported their findings. Rotem and Locar are advising any businesses that use the Biostar 2 platform to change the passwords they use to access the Biostar 2 dashboard, and to also prompt their users to change their passwords.

Facebook paid contractors to transcribe users' audio: Bloomberg.
Facebook paid contractors to transcribe users' audio: Bloomberg

—   Share news in the SOC. Networks

Topical videos:

usr: 24
This is interesting!