hacking
Google will shut down Google+ four months early after second data leak - The Verge
https://www.theverge.com/2018/12/10/18134541/google-plus-privacy-api-data-leak-developers
the new vulnerability impacted 52.5 million users, who could have had profile information like their name, email address, occupation, and age exposed […] even if their account was set to private.
Kaspersky: networks of 8 Eastern European banks were hacked by people entering the premises and planting physical hardware like Raspberry Pi and USB devices – Securelist
Australia passes sweeping anti-encryption bill giving police power to implant malware and insert backdoors, despite opposition from experts, tech companies - TechCrunch
Quora Hacked
https://blog.quora.com/Quora-Security-Update
We recently discovered that some user data was compromised as a result of unauthorized access to one of our systems by a malicious third party.
Marriott says 500 million Starwood guest records stolen in massive data breach – TechCrunch
contained a guest’s name, postal address, phone number, date of birth, gender, email address, passport number, […] arrival and departure information, reservation date […]
Major SMS security lapse is a reminder to use authenticator apps instead - The Verge
anyone could have monitored a near-real-time data stream to find the relevant two-factor authentication code sent after trying to log into someone else’s account.
Facebook bug let websites read ‘likes’ and interests from a user’s profile – TechCrunch
https://techcrunch.com/2018/11/13/facebook-bug-website-leak-likes-interests-profile/
The vulnerability exposed the user and their friends’ interests, even if their privacy settings were set so that interests were only visible to the user’s friends
Security flaw in DJI’s website and apps exposed accounts to hackers and drone live feeds – TechCrunch
It took about six months for popular consumer drone maker DJI to fix a security vulnerability across its website and apps