stackdiary.com
Webflow got caught with its hand in the cookie jar and wants to settle disputes quietly.
stackdiary.com
In a significant data breach, hacktivist group NullBulge has infiltrated Disney's internal Slack infrastructure, leaking 1.2TB of sensitive data. This breach, posted on the cybercrime platform Breach Forums on July 12, 2024, exposes many of Disney's internal communications, compromising messages, files, code, and other proprietary information.
stackdiary.com
According to the YouTube channel Gamers Nexus, over 600,000 customer warranty claims for MSI products were publicly accessible via Google search. MSI, a leading computer hardware and peripherals manufacturer, had exposed data that included sensitive information such as names, addresses, phone numbers, and specific order details.
stackdiary.com
British bulk SMS provider IdentifyMobile exposed 200M records because a developer misconfigured an AWS S3 bucket and made it public. A research group from Germany spotted the issue and were able to access more than six terabytes of data. The said data included not only SMS message content but also phone numbers, sender names, and sometimes other account information. Twilio also recently disclosed a security incident in relation to this news, but their alert email completely downplayed the level of data that was available from this AWS bucket.
stackdiary.com
During installation, the router sent several data packets to an Amazon server in the US. These packets contained the configured SSID name and password in clear text, as well as some identification tokens for this network within a broader database and an access token for a user session that could potentially enable a MITM attack. Linksys has refused to acknowledge/respond to the issue.
stackdiary.com
To attend the championship this year, fans must use a digital ticket provided through UEFA’s Ticket application. According to Heise, this app requires access to personal data, including name, email, phone number, and GPS permissions. While app store descriptions note the collection of personal information and activity data for analysis purposes, they omit any mention of location sharing.
stackdiary.com
OpenAI, which is co-defendant with Microsoft, is seeking an informal discovery conference to compel the Times to produce documents demonstrating the originality and ownership of the copyrighted works in question. According to OpenAI’s court filing, the information is critical to their defense against claims of copyright infringement.
stackdiary.com
Moritz Körner, Member of the European Parliament, disclosed the decision on Twitter. Swedish publisher SVG said, “The question was removed at the last moment from Thursday’s ambassadorial meeting in Brussels”.
stackdiary.com
Patrick Breyer, a staunch defender of digital rights, laments the Pirate Party’s exit from the EU Parliament as a blow to online privacy.
stackdiary.com
A user on the online forum 4chan has leaked a massive 270GB of data purportedly belonging to The New York Times. This leak includes what is claimed to be the source code for the newspaper’s digital operations.
stackdiary.com
The latest proposal mandates user consent for monitoring messages on all communication apps, including those with end-to-end encryption.
Access was gained through a third-party cloud database provider, which we know to be Snowflake.
stackdiary.com
The only exception is private messages, and some users have reported difficulty opting out.
stackdiary.com
Would you like a spicy spaghetti dish? Just use some gasoline.
stackdiary.com
The service offers the ability to purchase credits through cryptocurrencies, as well as offers the data for AI training purposes.
Greg Sadetsky introduces his demo, Sagittarius, as a response to Google's Gemini. Utilizing GPT-4, Sadetsky's demo showcases real-time capabilities similar to those claimed by Gemini but were lacking in Google's demonstration.
Twitter enforces strict restrictions against external parties using its data for AI training, yet it freely utilizes data created by others for similar purposes.
The EDPB issued an urgent binding decision that essentially bans Meta from using personal data for behavioral advertising in the entire European Economic Area (EEA).
This change will force its users into binding arbitration, which is a means to resolve disputes (such as a cybersecurity breach leaking your DNA data) outside of court.
Microsoft is working on a Jarvis that will monitor anything and everything about your digital life to try and optimize your life for "well being".
skilledtothegills 1y ago • 100%
The breach has now been confirmed by the Discord.io team and the article has been updated to reflect this.
skilledtothegills 1y ago • 100%
I'm actually curious where did they got the passwords from? Discord.io looks to be using Discord itself for authenticating users, but I myself have never used the service so I have no idea.
skilledtothegills 1y ago • 100%
I apologize. I included an image in the submission and it seems it hijacked the URL. I've edited the submission to include the link.