Facebook reported this past week that 50-90 million accounts where hacked or compromised through three bugs in their interface that would allow some hacker to bypass challenges via a stolen access token, video downloaded access. Facebook stated they have fixed the bug and made stolen access tokens unusable for the 90 million compromised accounts. So if you had to re-log in this week, chances are, your account was compromised. Add that point, it would be smart to change your password. On top of that, it may also be a good idea to turn on the 2 Factor Authentication in your Facebook settings.
Online scam artists are targeting users of the direct deposit payroll system, using social engineering attacks to get access to bank accounts and steal your paycheck. The primary targets are in education, healthcare, and airline employees. So be watchful over emails saying you need to log into your account to verify your direct deposit information. That’s where they get you. And it goes without saying, do NOT click on any links in emails. Contact your HR department immediately to verify.
FEMA has planned a test of the Emergency Alert System and Wireless Emergency Alerts (WEA), which allows the president to send a message to all phones in the United States in the case of a national emergency. This test was originally scheduled for Thursday September 20, but is now postponed until October 3 due to Hurricane Florence and the ongoing response effort. This Presidential Alert alert test will send a message with a loud tone (or vibration if your phone is on silent) at 2:18 PM Eastern time on Wednesday October 3. The header of the message will say “Presidential Alert” and the body of the message will read “THIS IS A TEST of the National Wireless Emergency Alert System. No action is needed.” The message will come through just like a weather or Amber Alert, except unlike those alerts, users will not have the ability to disable the Wireless Emergency Alerts.
On Thursday, FEMA will perform a test of IPAWS: Integrated Public Alert and Warning System. It will send a message to all the phones in the United States to test the infrastructure of the warning system. The test will take place around 2:18 PM ET and will last half an hour. It is a huge deal that the federal government will take command of every cell phone tower in the country in order to reach everyone at once with a test emergency text message. While there is an opt out provision for some emergency alerts, this isn’t one of them. You cannot disable it.
Law enforcement has been using s service called Securus, to keep track of people through their GPS data on their cellphone. Securus is a company that data-mines information from cellphone towers, metadata on email and text messages, and phone calls. And it’s completely legal.
Even though Verizon has purchased the Yahoo Mail during the 2017 buyout, it doesn’t necessarily mean much has changed with Yahoo Mail. If you still have a Yahoo email account, more than likely it is still spying on you. Analysts claim that Yahoo continues to scan the contents of users emails in order to sell information onto advertisers. Yahoo’s parenting company, Oath, claims that it only scans promotional emails and states that free email comes with some associated costs. In other words, if you don’t pay for a product, you are the product. As The Verge highlights, Yahoo also does this form of email scanning on its premium mail platform, which costs users $3.50 per month.
VPNFilter has compromised over 500,000 routers in the US and can only be wiped if you reboot the router. It also affect a vast array of routers. To find out if your router is vulnerable, check out this list at Symantec.com And while you’re at it, it might be a good time to update your router firmware too.