In 2014, PopJam was launched as a community platform for kids aged seven to 12. While PopJam encourages creativity and has a lot of kid-friendly content, there are some issues with it: PopJam encourages engagement through likes and followers. Kids are rewarded for getting more followers, making them more likely to connect with complete strangers. There are no parental controls or age verification checks. User profiles are public. Advertisements on the platform target young kids specifically....

Instead of hosting movies and TV shows, Terrarium TV provides links to the highest quality, free content online. It seemed this would keep Terrarium TV safe from the kind of legal issues that plague so many free streaming platforms. In September 2018, however, the site went offline. No explanation was given, and even more confusing, there are still versions of Terrarium TV available to download online. As a result, a lot of people have been asking, ‘Is Terrarium TV legal and safe?...

Secure your accounts with strong passwords. Using a password manager is an easy way to do this. Keep your sensitive information private. Don’t post confidential information on social media; encrypt your information on shared computers; and wipe any device clean before selling it. Don’t share private information over the phone. Your bank will never call asking for login credentials or your social security number. Protect your online activities with a VPN....

Since Wednesday, staff at All India Institute of Medical Sciences (AIIMS) have been running services manually, including admissions, discharges, and billing, which has led to delays and long patient queues. In a press release, AIIMS stated that the appropriate law enforcement agencies are looking into the incident. Furthermore, the national cybersecurity response agency, CERT-IN, and the National Informatics Centre (NIC) are working on restoring affected services. AIIMS is a state-run educational institution that has been operating in New Delhi since the 1950s and has more than 2,000 hospital beds and thousands of undergrad students....

The No More Ransom Project The No More Ransom project is celebrating its fifth birthday this week. The initiative started out in 2016 with just a couple of founding partners: IT security companies, Kaspersky and McAfee, the National High Tech Crime Unit of the Dutch police, and Europol’s European Cybercrime Centre. Today, the project can count on approximately 170 partners from all over the world, mainly tech companies and law enforcement agencies....

VPN Flaw Origin of Latest Attack On May 14, Kimsuky managed to penetrate the Korean Atomic Energy Research Institute’s VPN system. KAERI, headquartered in Daejeon, South Korea, only discovered the break-in on May 31. Next, the think tank blocked the attackers’ IP addresses and upgraded their system security. They also reported the intrusion to the government. Experts are still investigating the scale of the attack. The organization does not yet know whether the hackers stole any data....

Increasing pressure from the U.N. and sanctions from international governments have stifled North Korea’s already struggling economy, and the correlation between how desperate the nation is and the rise in hacking activity to siphon funds is apparent. North Korean Hackers Stole $626 Million in 2022 Alone Of the 1.5 trillion won (the equivalent of $1.2 billion) in cryptocurrency theft orchestrated by North Korean hackers since 2017, $626 million in virtual assets — almost half of the total amount — were swiped this year alone, according to an Associated Press report....

Database Leaked The personal information that was leaked includes full names, home addresses, dates of birth, ID numbers, and mobile phone numbers. They were offered for sale on a hacking forum on the dark web last Saturday. There were 4.934.863 entries in the database, which is more then the number of people that currently live in Georgia (3.7 M). We can therefore say that personal information of deceased people was also included on the list....

On my last employee role, I was dealing with real time DDoS attacks on some of the largest organizations in the world, including the financial and government sector. These are massive companies with seemingly unlimited security budgets, but in real time, with all the best technology and personal in place, they were still affected very badly, losing huge amounts of revenue and gaining a bad reputation. I realized that the main reason for this was their poor visibility proactively over what was threatening them or in real-time under attack what was affecting them....

Based in France, Gekko Group is a leading European B2B hotel booking platform that also owns several smaller hospitality brands. These include Teldar Travel & Infinite Hotel, the two brands most exposed in the database discovered by our team. However, some data from other Gekko Group-owned brands were also exposed. The database in question was huge, containing over 1 terabyte of data. This included data from Gekko Group brands and their clients, as well as external websites and platforms which their systems communicate with, such as Booking....

eHAC is a ‘test and trace’ app for people entering Indonesia to ensure they’re not carrying the virus into the country. The app was established in 2021 by the Indonesian Ministry of Health. However, the app developers failed to implement adequate data privacy protocols and left the data of over 1 million people exposed on an open server. Data Breach Summary What is eHAC? The Indonesian government introduced the electronic Health Alert Card (eHAC) to help combat the spread of COVID-19 within the country....

The company was using an unsecured server to store vast amounts of data collected from users on its games. Much of this data was incredibly sensitive, and there was no need for a video game company to be keeping such detailed files on its users. Furthermore, by not securing the data, EskyFun potentially exposed over 1 million people to fraud, hacking, and much worse. Data Breach Summary Company Profile EskyFun Entertainment Network Limited is a Chinese mobile game publisher with numerous gaming titles available on Android....

In this article we’ll explain, step-by-step, how to set up a VPN connection for your iPhone or iPad. Setting up a VPN for iPhone and iPad Setting up a VPN for iPhone is similar to setting up a VPN for iPad. There are a few small differences though. That’s why we’ve decided to split up these step-by-step guides. First, you’ll find instructions on installing a VPN on your iPhone and then we list them for your iPad....

To that end, an industrial software vulnerability report has been published on October 21st, 2021 revealing vulnerabilities within an important industrial oversight and supervision component known as SCADA or Supervisory Control And Data Acquisition. The product in question belongs to Mitsubishi Electric, specifically their MC Works64 software component. Information about the vulnerability has also been mirrored on CISA‘s portal (Cybersecurity & Infrastructure Agency). About MC Works64 MC Works64 is an industrial monitoring and control system (SCADA) relating to production processes, operations, and manufacturing that provides real-time visualization, analytics, connectivity, and more for “manufacturing, industrial automation, and smart buildings customers”....

10-Year VPN Patent Fight Kendall Larsen, VirnetX CEO and President, said in a statement: “It has taken us 10 long years, 4 successful jury trials, 2 successful Appellate Court rulings and a favorable Supreme Court decision to get here. […] We trust Apple will honor the decisions rendered by our courts and their esteemed judges and honor an agreement to abide by the court’s decision.” “We believe that our technology provides an important security feature in some Apple products especially the iPhone”, continued Kendall Larsen....

Life is indeed good – until you load up Netflix and that one show you’ve been waiting to binge-watch is nowhere to be found. While smart TVs allow for easy streaming on the big screen, they are affected by geographical restrictions just like any other device. Luckily, there’s an easy solution to this problem – a VPN, or virtual private network. A solid VPN will help you access the full range of content on numerous streaming apps, with added security and privacy along the way....

About REvil/Sodinokibi And Other Cybercriminal Gangs REvil is a piece of supremely dangerous cybercriminal ransomware, known to be offered as ransomware-as-a-service. The ransomware, also known as Sodinokibi, was first identified in 2019 and has been sourced to the “financially motivated GOLD SOUTHFIELD threat group”, according to threat intelligence research by Secureworks. Adviser to the U.S. Secret Service on cybercrime investigations, Tom Kellerman, had stated in October last month that REvil is at the top of the list of cybercriminal groups....

Fortunately, you can protect yourself from malware by following a few simple tips, like getting a good antivirus program and using a VPN for gaming. Our favorite VPN, ExpressVPN offers some of the fastest VPN connections around so that you can frag your enemies without interruption. Downloading the wrong file or app could see your device infected with malware (malicious software) that’s out to steal your data. In fact, there have been many cases where player data has been misused or stolen from companies....

We sat down with him to talk about his book and the significance of threat modeling. vpnMentor: What made you write Threat Modeling? Shostack: I wrote Threat Modeling because threat modeling is at the core of my security career. I have watched so many people struggle to create threat models, even mediocre ones, and I figured there was a better way to teach it. We security folks learn by doing, by action, by apprenticeship, but a lot of what we’re taught to do goes untested....

As the UK’s data privacy regulator, the ICO is tasked with ensuring companies and individuals comply with the country’s data protection laws. As part of this duty, the ICO investigates public complaints of personal data infringement. Though the investigative process is confidential, the ICO records and investigates every complaint and data breach record. TikTok will have 30 days to respond to the findings. The ICO also said that its notice does not mean TikTok has conclusively violated UK’s laws, however, if found guilty, the social media giant could be fined up to 4% of its annual global turnover....