Manchester United hack, TikTok and Xbox bugs, and other cybersecurity news
We round up the week’s most important cybersecurity news.
- Putin said that by 2021 the damage to the global economy from cyberattacks would exceed $6 trillion, citing expert estimates.
- The EU wants to give businesses access to citizens
- Facebook paid a fine of 4 million rubles for failing to disclose information on the localization of Russian users’ databases.
This prompted Roskomnadzor to initiate administrative proceedings against Facebook as well as Twitter. The Federal Bailiff Service is still trying to recover the penalty.
TikTok fixed vulnerabilities that could have enabled attackers to hijack user accounts
TikTok’s team fixed two vulnerabilities that could allow attackers to hijack user accounts. Security researcher Muhammed Taskiran reported the issues through TikTok’s bug bounty program in August.
Hackers attacked the club’s computer systems with ransomware
Hackers attacked the club’s computer systems with ransomware. According to media reports, the hackers are demanding a ransom to avoid disclosing confidential information, but who is behind the attack and the ransom amount remains unknown.
The club could face substantial fines if it is found that personal data of users was stolen during the attack.
Xbox site bug could have allowed linking gamer tags to users’ emails
Several cybersecurity researchers warned Microsoft about the vulnerability on the Xbox site, which could link gamer tags to real email addresses.
Microsoft has fixed the bug.
Russian Ministry of Digital Development launches app to track contacts with infected COVID-19 patients
The Ministry of Digital Development, Communications and Mass Media of the Russian Federation unveiled an app for iOS and Android that tracks contacts with people infected with COVID-19.
The description states that the service does not transmit data about the device, its owner or location. It provides only information about contact with an infected COVID-19 person on a specific date within the last 14 days, according to the developers.
The EU proposed giving businesses access to citizens’ personal data
The European Commission proposed new rules giving companies access to public and personal data of citizens. It is expected to help European businesses compete with American and Asian giants and spur innovation.
The GDPR rules will continue to apply — companies and government agencies will still need to implement technical solutions to ensure privacy.
Also on ForkLog:
- Hackers attacked cryptocurrency platforms hosted on GoDaddy.
- The Moscow authorities will develop a system for creating digital profiles of city residents at 280 million rubles.
- Damages from ransomware since late 2019 exceeded $1 billion.
- The Ministry of Internal Affairs will create a biometric data bank for residents of Russia and foreigners.
- Interpol disrupted the activities of cybercriminals from Nigeria, who attacked 500,000 companies worldwide.
What to read this weekend?
How do data leaks occur — who leaks users’ personal information to the dark web and who buys it and why? ForkLog, with experts, examines how the data black market operates.
Subscribe to ForkLog news on Telegram: ForkLog Feed — the full feed, ForkLog — the most important news and polls.
Рассылки ForkLog: держите руку на пульсе биткоин-индустрии!