Chinese police have revealed 1 billion people’s data in an unprecedented leak
When states struggle with the far-reaching implications of the U.S. Supreme Court’s June decision on reverse constitutional abortion rights, WIRED examined privacy risks coined by the widely deployed automatic license plate reader because the risk of being prosecuted for trying to get an abortion is increasing across the country. And researchers have emphasized digital self-defense value of end-to-end encryption anywhere in the world, as civil rights protections and law enforcement powers evolve.
Apple announced a new protection this week called “Lockdown mode” for iOS 16 that would allow users to choose to run their phones in a more restricted, but safer mode if they were at risk of being targeted by intrusive spyware. And the researchers say that the new encryption algorithms announced by the National Institute of Standards and Technology are designed to against quantum computers will be difficult to test in any practical sense for many years to come.
We tested how users can Protect yourself against the worst Instagram scams and look back worst hacks and data breaches of 2022 so farmany things are certain to happen.
But that’s not all. Each week, we compile news that we don’t break or cover in depth. Click on the title to read the full story. And it’s safe out there!
In one of the largest and most impactful personal data breaches of all time, attackers pulled the data of nearly 1 billion Chinese citizens from Shanghai police databases and tried to extort the department for about $200,000. The database includes names, phone numbers, government ID numbers, and police reports. The researchers found that the database itself was secure, but the management console was publicly accessible from the open internet, allowing anyone with basic technical skills to get the information. information without password. The scale of the breach is immense and it is the first breach of this scale to affect the Chinese government, which is notorious for hoarding vast amounts of data, not just about its citizens. this country but also about people around the world. China is responsible for Violation of the US Office of Personnel Management and the Equifax credit bureau breach, among many other breaches worldwide.
FBI Director Christopher Wray and Britain’s MI5 chief of security, Ken McCallum, issued a joint warning this week that China was, as Wray put it, “the biggest long-term threat to the economy. and our national security.” The two noted that China has conducted extensive espionage around the world and interfered in elections and other political procedures. Wray notes that if China proceeds to take Taiwan it will “represent one of the most terrible business disruptions the world has ever seen.” McCallum said that since 2019, MI5 has more than doubled its focus on China and now conducts seven times more investigations related to the Chinese Communist Party than in 2018. A spokesman for the Chinese Foreign Ministry Zhao Lijian describes British officials as trying to “strengthen the Chinese Threat Theory.” He added that MI5 should “remove imaginary demons.”
The HackerOne bug bounty program, which administers vulnerability submission and reward programs for companies, fired an employee this week for stealing vulnerability disclosures submitted through the platform and them to the affected companies to withdraw rewards for personal gain. HackerOne discovered the scheme when a client company flagged a security vulnerability disclosure that was suspiciously similar to information it received in June from another researcher. The scam employee, who was new to the company, accessed HackerOne’s platform from April 4 to June 23 and made seven vulnerability disclosures using stolen research. “This is a clear violation of our values, culture, policies and employment contract,” HackerOne wrote in an incident report. “We have laid off staff and further strengthened our defenses to avoid similar situations in the future.”
The US Cybersecurity and Infrastructure Agency, the Federal Bureau of Investigation and the Treasury Department said in a joint warning this week that North Korean hackers have targeted the health and public health sectors. with the lesser known Maui ransomware strain. They warned that paying such a ransom could violate US sanctions. “North Korean state-sponsored cyber actors used Maui ransomware in these incidents to encrypt servers responsible for healthcare services — including health record services electronic health, diagnostic services, imaging services and intranet services,” the alert warns. “In some cases, these incidents have disrupted services provided by targeted HPH Sector organizations for extended periods of time.”