2025-01-12 18:26:56 Pacfic
Gravy Analytics Massive Location Data Breach - 2d
Location data seller Gravy Analytics suffered a major data breach, potentially exposing the personal information of millions of users. The attackers claim to have stolen 17TB of data, including customer lists and location data. The breach highlights the risks associated with data brokers and their collection of sensitive consumer information. The stolen data includes precise location data from mobile phones showing people’s movements and the names of 3455 apps that leaked the location data.
Microsoft Recall Exposes Sensitive Data Screenshots - 30d
Microsoft’s new AI feature ‘Recall’ for Copilot+ PCs stores screenshots of sensitive data, including credit cards and social security numbers, even when a ‘sensitive information’ filter is enabled. This has raised serious privacy and security concerns among users. This feature takes continuous screenshots of everything a user does. The data is stored locally but sent off to Microsoft’s LLM for analysis. This has prompted an investigation by the UK Information Commissioner’s Office. This incident highlights the potential risks of AI-powered surveillance features and the importance of user privacy.
Malicious QR Codes Distributed via Email and Snail Mail - 25d
Malicious actors are distributing malicious QR codes through various channels, including email attachments and physical mail. These QR codes lead to malicious applications designed to steal login credentials and other sensitive information. Security analysts are struggling to counter these attacks, while some email security vendors are employing overly aggressive flagging mechanisms that hinder legitimate communications.