Link

‘Have I Been Pwned’ Open Sourced, Partners With FBI

Andrew Orr ·

The popular service Have I Been Pwned has made its code open source, and it’s also partnering with the FBI. The agency will send compromised passwords discovered during investigations.

Why is the FBI getting involved? Because Bryan A. Vorndran, the FBI’s Assistant Director, Cyber Division, said, “We are excited to be partnering with HIBP on this important project to protect victims of online credential theft. It is another example of how important public/private partnerships are in the fight against cybercrime.”

Link

iOS 14.6 Tells Apple Watch Series 3 Users to Restore Device Prior to Updating watchOS

Charlotte Henry ·

iOS 14.6 is prompting some users to restore their Apple Watch before trying to install the latest version of watchOS 7. The problem is related to the GPS version of the Series 3 as it has just 8GB of internal storage, 9to5 Mac reported.

With the latest versions of iOS and watchOS, Apple seems to have given up trying to force users to delete apps and media manually, which almost never solves the problem. As shown by a 9to5Mac reader on Twitter… iOS 14.6 simply asks the user to unpair and restore the Apple Watch Series 3 in order to install watchOS updates… Previously, the message only recommended that the user should delete some content before trying to install the update again.

Link

How Ad Agencies Are Helping Clients Navigate iOS 14.5 and App Tracking Transparency

Charlotte Henry ·

iOS 14.5, including App Tracking Transparency, arrived almost a month ago. The Drum spoke to key figures in the advertising industry to get their take and see how they are helping their clients navigate the changes. (A recent episode of Media+ also explored this topic.)

Tim Maleeny, president and chief strategy officer, Havas: A fair exchange for first-party data in return for a better user experience, access to valuable content or discounts is a much more honest relationship with your customers than harvesting their data without their knowledge. There are many ways to track ecosystem data to approximate a target audience’s online habits, but taking the more meaningful approach of an open exchange – in other words, placing a value on customers’ data – is where this is all headed.

TMO Deals

SurfShark VPN 2-Year Subscription: $42.74

Bryan Chaffin ·

We have a deal on a 2-year subscription to SurfShark VPN for Memorial Day. This service features unlimited data, military-grade AES-256-GCM encryption, and IKEv2 and OpenVPN protocols. The company also has a no logging policy. Two years with SurfShark is $42.74 through our Memorial Day sale.

 

https://www.youtube.com/watch?v=g_93KzDGmCI

Link

DHS Releases Cybersecurity Rules for Pipeline Operators

Andrew Orr ·

Today, the Department of Homeland Security’s Transportation Security Administration (TSA) announced a Security Directive for critical pipeline companies.

The Security Directive will require critical pipeline owners and operators to report confirmed and potential cybersecurity incidents to the DHS Cybersecurity and Infrastructure Security Agency (CISA) and to designate a Cybersecurity Coordinator, to be available 24 hours a day, seven days a week.

It will also require critical pipeline owners and operators to review their current practices as well as to identify any gaps and related remediation measures to address cyber-related risks and report the results to TSA and CISA within 30 days.

New Orlando iPad Case For Kids From Gear4
Cool Stuff Found

New Orlando iPad Case For Kids From Gear4

Charlotte Henry ·

Gear4 unveiled its new Orlando iPad case for kids on Thursday. It works with the 10.2-inch (7th, 8th gen) models and is durable and lightweight with an adjustable arm. This means the tablet can be propped up or even secured around a headrest in a car. The Orlando costs €39.99 (US$48.75) or £39.99 (US$56.70) and is available via zagg.com.

Link

Facebook Can Get Location Data From Your Photos

Andrew Orr ·

iOS users can limit their location exposure to apps that ask for it, but your location is leaking in another area: Your photo metadata.

I took a photo with my iPhone and then uploaded that to my Facebook account. I used Facebook’s app on my iPhone, the same app that has been told “never” to access my location, the same account that knows I have this switched off. But Facebook still collects the location tag from that photo, along with my IP address.

It’s important to note that Facebook and other companies have had this ability for years. This is not, as the Forbes article implies, a response to iOS 14.5 App Tracking Transparency. The app I use to view and edit metadata is Metapho.

Link

WebKit Flaw Crashes Safari, Could Lead to Further Exploits

Andrew Orr ·

A WebKit flaw on iOS and macOS can cause Safari to crash and could lead to further malicious attacks.

The vulnerability stems from what security researchers call a type confusion bug in the WebKit implementation of AudioWorklet, an interface that allows developers to control, manipulate, render, and output audio and decrease latency. Exploiting the vulnerability gives an attacker the basic building blocks to remotely execute malicious code on affected devices.