Cyber Attacks, Threats, and Vulnerabilities
Operation Spalax: Targeted malware attacks in Colombia (WeLiveSecurity) ESET researchers uncover attacks targeting Colombian government institutions and private companies, especially in the energy and metallurgical industries.
SUNSPOT Malware: A Technical Analysis (CrowdStrike) In this blog, we offer a technical analysis of SUNSPOT, malware that was deployed into the build environment to inject this backdoor into the SolarWinds Orion platform.
Third malware strain discovered in SolarWinds supply chain attack (ZDNet) CrowdStrike, one of the two security firms formally investigating the hack, sheds some light on how hackers compromised the SolarWinds Orion app build process.
SolarWinds hackers linked to known Russian spying tools, investigators say (Reuters) The group behind a global cyber-espionage campaign discovered last month deployed malicious computer code with links to spying tools previously used by suspected Russian hackers, researchers said on Monday.
Sunburst backdoor shares features with Russian APT malware (BleepingComputer) Kaspersky researchers found that the Sunburst backdoor, the malware deployed during the SolarWinds supply-chain attack, shows feature overlaps with Kazuar, a .NET backdoor tentatively linked to the Russian Turla hacking group.
SolarWinds Hackers Shared Tricks With Known Russian Cyberspies (Wired) Security researchers have found links between the attackers and Turla, a sophisticated team suspected of operating out of Moscow’s FSB intelligence agency.
The SolarWinds Cyberattack and the Need for Hyper-Vigilance (Governing) The focus has been on the attack's impact on federal agencies and the private sector, but state and local governments need to inventory their vulnerabilities and prepare for a long recovery.
RiskIQ CEO on the SolarWinds Attack: 'This Hit the Security Community Hard' (CTOvision) The SolarWinds breach is a case study in how attackers can subvert a widely used piece of software to turn it to their advantage, says Lou Manousos, CEO of RiskIQ. “The […]
Experts Weigh In on Cybersecurity Risks of Capitol-Like Attacks (SecurityWeek) Following the recent attack on the U.S. Capitol, where a parade of people stormed the building and gained access to unprotected computers, industry professionals share thoughts on what they would do if they were in charge of cybersecurity at an organization that could end up in a similar situation.
The Day the Internet Came for Them (Foreign Affairs) Washington Wakes Up to the Dark Reality of Online Disinformation
Social Media & Parler in Troubling Times: New Opportunities for Malicious Actors (KnowBe4) Social media, Parler, malicious downloads, phishing
Ubiquiti users told to change their passwords following security... (HOTforSecurity) IoT device vendor Ubiquiti has told customers that they should change their passwords after a security breach left user details exposed. In an email sent to users, router and access point manufacturer Ubiquiti explained that it had recently... #databreach #databreachnotification #Iotmanufacturer
IoT Vendor Ubiquiti Suffers Data Breach (Dark Reading) Cloud provider hosting certain IT systems attacked, company says.
Account Notification (Ubiqiti) We recently became aware of unauthorized access to certain of our information technology systems hosted by a third party cloud provider. We have no indication that there has been unauthorized activity with respect to any user’s account.
Google Titan security keys hacked by French researchers (Naked Security) Researchers can now made software copies of Google’s “unclonable” Titan security keys – but not yet undetectably.
Fake Cyberpunk 2077 Android Apps are on the Move (Security News) The action role-playing video game Cyberpunk 2077 has been one of the most awaited game in the recent times and after multiple delays the game finally released in December 2020. Even though the game had bugs and issues during the initial release, it garnered massive popularity and following during the initial release window.
Web Application Attacks on Healthcare Spike 51% As COVID-19 Vaccines are Introduced | Imperva (Imperva) As the first vials of COVID-19 vaccines were disseminated in December, Imperva Research Labs monitored an astounding 51% increase in web application attacks on healthcare targets. The activity concludes an unprecedented year of cybersecurity activity. Imperva data shows the healthcare industry experienced 187 million attacks per month globally, on average, or roughly 498 attacks per […]
Leaked Location Data Shows Another Muslim Prayer App Tracking Users (Vice) Salaat First has more than ten million downloads and sold location data to Predicio, which is linked to a U.S. contractor which works with ICE.
Experts Sound Alarm On New Android Malware Sold On Hacking Forums (The Hacker News) Cybersecurity Experts Document An Indian Android Malware Author Operating from Darknet Forums
Prestera Center Notifies Patients of Data Security Incident (Prestera Center) We have become aware of a data security incident that may have resulted in unauthorized access to the private information of a small percentage of our patients.
‘I’ll Teams you’: Employees assume security of links, file sharing via Microsoft comms platform (SC Media) In theory they know better. But Users naïvely trust workplace communications platforms, despite phishing and impersonation threats.
Hacked Reserve Bank acknowledged under-investment in cyber security last year (Reseller News) The Reserve Bank of New Zealand, which revealed a breach of sensitive data yesterday, acknowledged a series of cyber security shortcomings in a consultation document last year.
Vulnerability Summary for the Week of January 4, 2021 (CISA) The CISA Weekly Vulnerability Summary Bulletin is created using information from the NIST NVD. In some cases, the vulnerabilities in the Bulletin may not yet have assigned CVSS scores. Please visit NVD for updated vulnerability entries, which include CVSS scores once they are available.
Security Patches, Mitigations, and Software Updates
NVIDIA Ships Patches for High-Severity Security Flaws (SecurityWeek) NVIDIA ships patches for multiple high severity vulnerabilities in GPU drivers and vGPU software
Cyber Trends
Survey: More than half of organizations that store customer data in the cloud had security incidents in 2020 (Netwrix) Netwrix study also finds that data theft scenarios resulted in decrease in company valuation, customer churn and loss of competitive edge.
Marketplace
Huntress Acquires Network-Aware Endpoint Detection and Response Technology from Level Effect to Strengthen Platform Capabilities (GlobeNewswire) The acquisition brings malicious network traffic detection and expanded forensic capabilities to the Huntress Security Platform regardless of endpoint location
Cyware Announces Follow-on Investment as part of its Series A Fundraise (PR Newswire) Cyware, the industry's only Virtual Cyber Fusion Center Platform provider featuring next-generation SOAR technology, today announced that it...
PE Firm Completes Acquisition of Forcepoint (SecurityWeek) Investment firm Francisco Partners has completed its previously announced acquisition of Forcepoint from Raytheon Technologies.
Accenture Acquires Real Protect, Brazil-Based Information Security Company (BusinessWire) Accenture acquired Real Protect, a provider of managed security and cyber defense services.
More companies suspend political funding after storming of U.S. Capitol (SeekingAlpha) Following in the footsteps of Marriott (NASDAQ:MAR), JPMorgan Chase (NYSE:JPM) and Citigroup (NYSE:C), a growing number of big businesses have decided to suspend or review their campaign donations in the wake of last week's riot at the U.S.
U.S. Stocks Finish Lower on New Risks (Wall Street Journal) The Dow falls after ending last week at its third record close of 2021
Twitter shares close down more than 6% first trading day after Trump ban (CNBC) Twitter made the decision to remove President Trump "due to the risk of further incitement of violence," after the deadly riot at the U.S. Capitol.
Trump Supporters Used GoFundMe To “Build An Army” In DC (BuzzFeed News) Trump supporters used the popular crowdfunding platform to raise money to attend the president’s rally in Washington, DC.
Facebook Says It Is Removing All Content Mentioning ‘Stop the Steal’ (Wall Street Journal) Citing use of the phrase among members of the pro-Trump mob that stormed the Capitol, the tech giant said its move is aimed at stemming incitements to violence ahead of Inauguration Day.
()
Facebook appoints civil rights vice president amid pressure over racial hatred, violence on Facebook, Instagram (USA TODAY) Civil rights attorney Roy L. Austin, Jr. is charged with curbing racial hatred and violence on Facebook and Instagram after damning internal audit.
Following riots, alternative social apps and private messengers top the app stores (TechCrunch) Alternative social media apps, including MeWe, CloutHub and other privacy-focused rivals to big tech, are topping the app stores following Trump’s ban from mainstream social platforms like Facebook and Twitter and the more recent removal of conservative social app Parler from both the App Sto…
Confused users in search of Parler push the app 'Parlor' to top of app store charts (Mashable) Parler's been banned, and Parlor is reaping the benefits.
The Rise And Fall Of Parler (Avast) Taking an in-depth look at the popularity surge and recent takedown of social media platform Parler.
America Censored! New Social Media Platform Features Zero Tolerance for the Censure of Free Thought (PR Newswire) WhyWould.com Excerpts from an article in the New York Times; January 1st, 1984 edition reviewing George Orwell's' famous literary work "1984"...
Why WhatsApp’s New Privacy Rules Sparked an Exodus (Bloomberg) Facebook Inc.’s WhatsApp has begun alerting its 2 billion users of an update to its privacy policy -- and if they want to keep using the popular messaging app, they have to accept it. The new terms, delivered in early 2021, have caused an outcry among technology experts, privacy advocates, billionaire entrepreneurs and government organizations and triggered a wave of defections to rival services.
WhatsApp users flock to rival app from co-founder’s group in Mountain View (Silicon Valley Business Journal) Elon Musk fueled the shift to the new app when he tweeted, "Use Signal," on Thursday and that endorsement was retweeted by Twitter CEO Jack Dorsey.
Palo Alto Networks Inc: Is This Cybersecurity Stock Becoming a 5G Play? (Profit Confidential) This is a look at Palo Alto Networks Inc (NYSE:PANW), a cybersecurity company that now also deserves the attention of 5G stock investors.
CIA Recruiting Next Generation Employees and DARPA Wants a Genius Bar (ClearanceJobs) The CIA makes it clear that they have hiring goals to meet with their upgrades to their recruiting website and DARPA doesn't want companies to get lost in the innovation world.
Army Selects Palantir, Raytheon To Support Development Of TITAN Intelligence System (Defense Daily) The Army has awarded a pair of deals to Palantir Technologies and Raytheon Intelligence & Space to support development and software maturation for the
Forcepoint Snags Former Arista, F5 Exec Manny Rivelo As CEO (CRN) Forcepoint has named Manny Rivelo as CEO following the company’s $1.1 billion sale from Raytheon to private equity firm Francisco Partners.
Products, Services, and Solutions
ThreatLocker Elevation Control Adds Privileged Access Management (PAM) to Application Control Suite to Help MSPs Streamline Management of Local Admin Rights (BusinessWire) ThreatLocker today announced ThreatLocker Elevation Control, a Privileged Access Management (PAM) solution that provides MSPs with the ability to quic
RangeForce Partners with Managed Detection and Response Provider CRITICALSTART (BusinessWire) Under terms of the agreement, CRITICALSTART will provide the RangeForce interactive cybersecurity training platform to its customers.
AlgoSec Strengthens and Simplifies Cloud and SDN Security Management (GlobeNewswire) New A32 version of Network Security Policy Management Suite deepens visibility and control over hybrid environments, enables secure micro-segmentation deployment and delivers enhanced SDN and SD-WAN integrations
Cybereason and Intel Drive New Silicon Enabled Ransomware Protections (PRWeb) Cybereason today announced a collaboration to adopt new Intel® Hardware Shield protections for Ransomware available on the 11th Gen Intel® Core™ vPro® mobile platf
Cowbell Cyber Adds Highly Anticipated Excess Cyber Insurance Line (PR Newswire) Cowbell Cyber, the industry's first AI-powered cyber insurance provider for small to mid-sized businesses (SMBs), today announced the...
QuoLab Introduces New Reporting Functionality Feature for Security Operations Platform (BusinessWire) QuoLab has released a new capability for its platform that allows users to generate reports that translate complex data into actionable intelligence.
Mastercard launches cybersecurity centre for SMEs (Finextra Research) Small businesses are the backbone of economic growth. The needs of small businesses have not changed during the pandemic, but they have grown more acute.
Fortinet promises free cybersecurity training until skills gap trend reverses (Security Brief) We are committed to continue offering the entire catalogue of self-paced Network Security Expert training at no cost until we see the skills gap trend reverse.
Signal has better privacy policies than WhatsApp or Telegram — here’s why (Plugged | The Next Web) WhatsApp made one of its most controversial changes to its privacy policy last week. The new policy gives the app more freedom to integrate with Facebook and let users chat with businesses easily; this also means the app will collect a lot of your data. Because of this change, there has been a lot of […]
Radware’s Cloud DDoS Protection Service Selected by Fortune 100 Industrial Company (GlobeNewswire) Radware Protects Customer’s Global Data Centers to Mitigate Current and Future Threats
Technologies, Techniques, and Standards
NEW PONEMON RESEARCH: Growing Security Operation Center Challenges, Increasing Complexity and Rising Costs Drive Investments in XDR and Security Automation | FireEye (FireEye) Ponemon Institute and FireEye release second annual study on the Economics of Security Operations Centers, uncovering increasing management complexity, higher staffing and outsourcing costs, and anticipated spend on new technologies
2nd Economics of the SOC Report (Respond Software) Get the Ponemon Institute's 2nd Annual Study on the Economics of Security Operations Centers and learn the true cost for effective results. Download the report.
SentinelOne releases free Sunburst identification tool (ITP) The new tool from SentinelOne enables enterprises to emulate Sunburst and identify their cybersecurity readiness
DarkSide ransomware decryptor recovers victims' files for free (BleepingComputer) Romanian cybersecurity firm Bitdefender has released a free decryptor for the DarkSide ransomware to allow victims to recover their files without paying a ransom.
Decryptor Released for Ransomware That Allegedly Helped Cybercriminals Make Millions (SecurityWeek) Bitdefender has released a free decryptor for DarkSide, a piece of ransomware that allegedly helped cybercriminals make millions from targeted companies.
Darkside Ransomware Decryption Tool (Bitdefender Labs) We’re happy to announce the availability of a decryptor for Darkside. This family of ransomware has emerged in August 2020 and operates operate under a ransomware-as-a-service business model. How to use this tool Step 1: Download the decryption tool below and save it on your computer. Step...
Top 7 security mistakes when migrating to cloud-based apps (CSO Online) As organizations rush key apps to the cloud to support remote workers, they often create opportunities for attackers. These are the most common mistakes to avoid.
Over-Sharer or Troublemaker? How to Identify Insider-Risk Personas (Dark Reading) It's past time to begin charting insider risk indicators that identify risky behavior and stop it in its tracks.
Design and Innovation
He Created the Web. Now He’s Out to Remake the Digital World. (New York Times) Tim Berners-Lee wants to put people in control of their personal data. He has technology and a start-up pursuing that goal. Can he succeed?
Is software now everybody's job? The implications of low-code and no-code for developers (ZDNet) Some industry experts argue that the time has come for business users to be able to steer their own destinies when it comes to application development.
Research and Development
DARPA Enlists GrammaTech to Apply AI to Reverse Engineer Code (DevOps.com) DARPA awards GrammaTech a research grant to explore low code technology using AI to ease software and application updates.
Computer scientists: We wouldn't be able to control super intelligent machines: New findings from theoretical computer science (ScienceDaily) We are fascinated by machines that can control cars, compose symphonies, or defeat people at chess, Go, or Jeopardy! While more progress is being made all the time in Artificial Intelligence (AI), some scientists and philosophers warn of the dangers of an uncontrollable superintelligent AI. Using theoretical calculations, an international team of researchers shows that it would likely not be possible to control a superintelligent AI.
Academia
RIT, Stanford, Cal Poly Pomona take top spots in Collegiate Pentesting Competition finals (RIT) A team of RIT students took first place at the Collegiate Penetration Testing Competition (CPTC) international finals Jan. 7-10. This is RIT’s first time winning the competition, which challenges the world’s brightest cybersecurity college students to put their hacking skills to the test.
Legislation, Policy, and Regulation
From the Arab Spring to the American Winter: Cyberspace and Democracy After the Insurrection (Council on Foreign Relations) January 6, 2021 serves as the darkest moment of the democratic experience with the internet and digital technologies.
How to Save Democracy From Technology (Foreign Affairs) Ending Big Tech’s Information Monopoly
China Gives U.S. Tech the Silent Treatment (Wall Street Journal) Slow approval from China is dragging out big technology deals, costing U.S. tech companies time and money.
EU hopes for 'tech alliance' with Biden after Trump Huawei 5G ban (Nikkei Asia) But cutting dependence on cheap Chinese network equipment to keep testing allies
Exclusive: Huawei willing to fund security checks as way to Swedish 5G (Capacity Media) Huawei is willing to fund exhaustive security checks of its equipment in Sweden as a way of allowing operators to bid for 5G licences using its kit.
Germany and France Oppose Trump’s Twitter Exile (Bloomberg) Chancellor Merkel calls Trump’s ban on Twitter ‘problematic’. France’s Beaune says private actors shouldn’t have such power.
The Facebook Oversight Board Should Review Trump’s Suspension (Lawfare) Checks and balances don’t exist only for decisions people agree with. Facebook should allow oversight of its most high-profile content moderation decision yet.
Everything pundits are getting wrong about this current moment in content moderation: An ongoing list (Jillian C. York) ince Twitter and Facebook banned Donald Trump and began “purging” QAnon conspiracists, a segment of the chattering class has been making all sorts of wild proclamations about this “precedent-setting” event. As such, I thought I’d set the record straight.
()
A farewell to @realDonaldTrump, gone after 57,000 tweets (AP NEWS) @realDonaldTrump, the Twitter feed that grew from the random musings of a reality TV star into the cudgel of an American president, died Friday. It was not quite 12 years...
Deepfake laws emerge as harassment, security threats come into focus (CyberScoop) A flurry of new state and federal laws targeting deepfakes couldn't come soon enough, analysts say.
US Announces Controversial State Department Cyber-Bureau (Infosecurity Magazine) Pompeo green lights CSET at eleventh hour
It's time for a national privacy law in the US (Help Net Security) Once the US introduces a national privacy law, incorporating the right privacy-preserving tech will be critical to maintaining compliance.
Outgoing FCC Chair Says Time's Up For Section 230 Rule (Law360) There's no time left to implement President Donald Trump's request to limit Big Tech platforms' immunity from lawsuits under Section 230 of the Communications Decency Act, according to the outgoing chief of the Federal Communications Commission.
Chad Wolf resigns as homeland security secretary (Washington Post) Acting homeland security secretary Chad Wolf abruptly resigned Monday, nine days before a presidential inauguration whose jittery security preparations are unfolding amid fears of worsening political violence following last week’s mob attack on the U.S. Capitol.
Litigation, Investigation, and Law Enforcement
()
Exclusive: FBI probes Russian-linked postcard sent to FireEye CEO after cybersecurity firm uncovered hack - sources (Reuters) The FBI is investigating a mysterious postcard sent to the home of cybersecurity firm FireEye's chief executive days after it found initial evidence of a suspected Russian hacking operation on dozens of U.S. government agencies and private American companies.
Hackers Taunt FireEye’s Kevin Mandia At Home With Postcard: Report (CRN) Hackers attempted to troll FireEye CEO Kevin Mandia with a postcard that called into question the company’s ability to attribute cyberattacks to the Russian government, Reuters reported.
A Disgruntled Employee Changed The State Department’s Website To Say That Trump’s Term Ends Today, Sources Say (BuzzFeed News) Secretary of State Mike Pompeo is launching an investigation after biographical pages for the president and vice president were changed on Monday.
U.S. sanctions Ukrainians involved in Russia-linked campaign promoted by Giuliani to smear Biden (Washington Post) The U.S. Treasury Department on Monday sanctioned a group of Russia-linked Ukrainians for trying to influence the 2020 election by attempting to smear President Trump’s Democratic rival, Joe Biden.
Treasury Takes Further Action Against Russian-linked Actors (U.S. Department of the Treasury) Today, the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) took additional action against seven individuals and four entities that are part of a Russia-linked foreign influence network associated with Andrii Derkach. Russian agent Derkach was designated on September 10, 2020, pursuant to Executive Order (E.O.) 13848, for his attempt to influence the 2020 U.S. presidential election.
Turkey Starts Antitrust Investigation Into WhatsApp, Facebook (Bloomberg) Turkey’s antitrust board launched an investigation into Facebook Inc. and its messaging service WhatsApp Inc. over new usage terms that have sparked privacy concerns.
Thou shalt not hack indiscriminately, High Court of England tells Britain's spy agencies (Register) Choke chain tightened on 'general warrants' after Privacy International wins judicial review
FBI Warns of Possible Nationwide Armed Protests Ahead of Biden Inauguration (Wall Street Journal) The FBI is warning in an internal memo of the possibility of armed protests at all 50 state capitols and in Washington, D.C., ahead of President-elect Joe Biden’s Jan. 20 inauguration, a law-enforcement official said.
Social-Media Watchdogs Detect Signs of Ongoing Extremist Threat (Wall Street Journal) Researchers at the Atlantic Council, Stanford Internet Observatory and elsewhere who feared violence before the U.S. Capitol riot now warn about additional events being planned online.
Prosecutors mull charges for theft of national security information after laptops and documents are stolen in Capitol siege. (New York Times) Michael R. Sherwin, the U.S. attorney in Washington, said on Sunday that the Justice Department was considering charges for “theft of national security information” after the violent mob that stormed the Capitol on Wednesday looted laptops, documents and other items from congressional offices.
FBI, NYPD told Capitol Police about risk of violence, officials say (NBC News) The FBI visited more than a dozen extremists before the rally last week to urge them not to travel to D.C., senior law enforcement officials said.
The Cybersecurity 202: Parler scrape puts some Capitol rioters in legal jeopardy (Washington Post) Researchers and analysts say a trove of data archived from conservative-favored social media app Parler poses a real risk for those who used the platform to share their involvement in a pro-Trump mob that stormed the U.S. Capitol.
Parler Sues Amazon After Tech Giant Kicks Site Off Its Servers (Wall Street Journal) The social-media service has sued Amazon.com after the tech giant abruptly ended web-hosting services to the company, effectively halting its operation.
Parler social network sues Amazon for pulling support (BBC News) The social network has hit back asking a federal judge to order it to be reinstated.
()
Complaint – #1 in Parler LLC v. Amazon Web Services Inc (W.D. Wash., 2:21-cv-00031) (CourtListener) COMPLAINT against defendant(s) Amazon Web Solutions, Inc. (Receipt # AWAWDC-6862856) Attorney David J Groesbeck added to party Parler LLC(pty:pla), filed by Parler LLC. (Attachments: # (1) Exhibit Correspondence from Defendant to Plaintiff, # (2) Exhibit Defendant's Customer Agreement, # (3) Summons, # (4) Civil Cover Sheet)(Groesbeck, David)
Every Deleted Parler Post, Many With Users' Location Data, Has Been Archived (Gizmodo) In the wake of the violent insurrection at the U.S. Capitol by scores of President Trump’s supporters, a lone researcher began an effort to catalogue the posts of social media users across Parler, a platform founded to provide conservative users a safe haven for uninhibited “free speech” — but which ultimately devolved into a hotbed of far-right conspiracy theories, unchecked racism, and death threats aimed at prominent politicians.
()
Parler data breach: Hackers claim they downloaded everything from Parler before it was taken offline (Computing) The information could help American law-enforcement authorities to identify and locate perpetrators who used the platform to plan US Capitol violence
70TB of Parler users’ data leaked by security researchers (CyberNews) Parler has been hit by a massive data scrape. Security researchers collected swaths of user data before the network went dark Monday morning.
Retired Lieutenant Colonel Is Unlikely to Face Court-Martial in Capitol Riot, Experts Say (Military.com) While he faces civilian charges, Larry Rendall Brock Jr. is unlikely to be recalled to face the military justice system.
Army PSYOP officer resigned commission prior to leading group to DC protests (Army Times) Capt. Emily Rainey was still on active duty during the Jan. 6 protest in D.C., but she had already resigned her commission, a defense official said.
‘QAnon Shaman’ charged with storming the Capitol is a Navy veteran (Navy Times) Jacob Anthony Chansley served aboard the Kitty Hawk from 2005 to 2007, according to service records.
How the military could bring retirees back to face charges after the Capitol riot (Washington Post) A retired Air Force officer in body armor and clutching plastic handcuffs in the Senate chamber has prompted questions about if and how retired veterans could be summoned and tried by the military justice system for their alleged role in the riot at the U.S. Capitol on Wednesday.
Energy Dept. Defends Grid Info Security Rule At DC Circ. (Law360) The U.S. Department of Energy has urged the D.C. Circuit to uphold its rule governing when the agency can withhold certain electric grid information from public records requests in the name of national security.
9th Circ. Judge Worries Doc Wants Privacy Breach 'Free Pass' (Law360) A Ninth Circuit judge doubted Monday a psychiatrist's efforts to overturn a $1 million jury trial judgment against her for wrongly reporting an Iraq War veteran as a homicide risk, saying she's asking for a "free pass," which would incentivize doctors to report "any form of threat, imagined or dreamed."
Photo App To Erase Biometric Data In Deal With FTC (Law360) The developer of now-defunct photo storage app Ever has agreed to permanently delete biometric data gleaned from its users to resolve the Federal Trade Commission's claims that the company deceived consumers about its use of facial recognition technology, the commission said Monday.
Former RAC employee sentenced to prison for selling personal data to claims management firm (Computing) The ICO says such acts could lead to a prison sentence for those responsible
Cisco seeks court approval to force Acacia to finish $2.6 billion merger (ZDNet) Updated: Acacia says that closing conditions set by the Chinese government were not met. Cisco does not agree.