Notices by Graham Cluley (gcluley@infosec.exchange), page 11

Three years in jail for teenager who spammed out school bomb threats, and made hoax call about hijacked plane

https://www.grahamcluley.com/jail-teenager-bomb-threats/

Quora hack leaves details of 100 million accounts exposed.

https://www.grahamcluley.com/quora-hacked/

Fitness-tracking apps caught misusing Touch ID to steal money from iPhone users

https://www.grahamcluley.com/fitness-tracking-apps-caught-misusing-touch-id-to-steal-money-from-iphone-users/

Marriott warns of hack. 500 million Starwood hotel guests' personal data could be exposed.

https://www.grahamcluley.com/marriott-hack-starwood/

The latest "Smashing Security" podcast is out: "Google Maps, Fed phishing, and Grinch bots"

Topics discussed include:
How are scammers stealing your money through Google Maps? Why did the FBI create a fake FedEx website? And how are US senators hoping to stop Grinch bots ruining Christmas?

Listen to full show in your fave podcast app, or at
https://www.smashingsecurity.com/106

Dell suffers security breach, reset customer passwords (but didn't tell customers why until now).

https://www.grahamcluley.com/dell-suffers-security-breach-resets-customer-passwords/

More details on One Planet York app vulnerability doesn't paint council in a good light

https://www.grahamcluley.com/more-details-on-one-planet-york-app-vulnerability-doesnt-paint-council-in-a-good-light/

Remember when Uber paid a hacker $100,000 under the guise of a bug bounty to keep quiet about a data breach? Well, they've just been fined £900,000

https://www.zdnet.com/article/uber-fined-900000-by-uk-dutch-privacy-regulators-over-2016-data-breach/

When the FBI rather than the fraudsters make the fake FedEx website

https://www.grahamcluley.com/when-the-fbi-rather-than-the-fraudsters-make-the-fake-fedex-website/

Did UK city council over-react to a vulnerability report in its recycling app? I'm not sure they did.

https://www.grahamcluley.com/one-city-york-vulnerability/

Happy thanksgiving to all our American listeners! Here's the latest episode of our "Smashing Security" podcast for you to digest before you tuck into the turkey.

https://www.smashingsecurity.com/105

Amazon warns customers it leaked their names and email addresses.

What aren't you telling us Amazon, and why?

https://www.grahamcluley.com/amazon-warns-customers-it-leaked-their-names-and-email-addresses/

High Tail Hall data breach exposes over 400,000 furry fans.

https://www.grahamcluley.com/high-tail-hall-data-breach-exposes-over-400000-furry-fans/

Two friends who admitted their roles in the 2015 data breach at TalkTalk have been sentenced to jail

https://www.bbc.co.uk/news/uk-england-stoke-staffordshire-46264327

Multi-factor failure locks out Microsoft Office 365 and Azure users.

It's supposed to keep criminals out of your account, not you.

https://www.grahamcluley.com/multi-factor-failure-locks-out-microsoft-office-365-and-azure-users/

Vision Direct hack reveals customer credit card details

https://www.grahamcluley.com/vision-direct-hack-reveals-customer-credit-card-details/

Credit card details lost at Vision Direct. :( Magecart perhaps? Should have gone to Specsavers. https://infosec.exchange/media/vLJPB_4Sr-9IPHri9lE

Target and other high profile Twitter accounts exploited for cryptocurrency scams. Umm... is Twitter doing anything about this?

https://www.grahamcluley.com/target-twitter-cryptocurrency-scam/