Facebook has been ordered to pay a fine of $414m by EU regulators who ruled that the company had broken EU law by forcing users to accept personalized ads. The ruling could have a major impact on Facebook’s advertising business in the EU, which is one of the company’s largest markets, if it is required to make changes to its advertising practices.
A hacker has claimed to have the personal data of 400 million Twitter users for sale on the dark web. Attackers have also released the account details and email addresses of 235 million users for free. The information was exposed due to a Twitter API vulnerability shipped in June 2021 and later patched.
Security researchers have identified security vulnerabilities in the connected vehicle APIs of 16 major car manufacturers, including Acura, BMW, Ferrari, Ford, Genesis, Honda, Hyundai, Infiniti, Jaguar, Kia, Land Rover, Mercedes-Benz, Nissan, Porsche, Rolls Royce, and Toyota.
** Links mentioned on the show *
Meta’s Ad Practices Ruled Illegal Under E.U. Law
https://www.nytimes.com/2023/01/04/technology/meta-facebook-eu-gdpr.html
Twitter data breach shows APIs are a goldmine for PII and social engineering
https://venturebeat.com/security/twitter-social-engineering/
https://arstechnica.com/information-technology/2023/01/what-twitters-200-million-email-leak-really-means/
Millions of Vehicles at Risk: API Vulnerabilities Uncovered in 16 Major Car Brands
https://thehackernews.com/2023/01/millions-of-vehicles-at-risk-api.html
** Watch this episode on YouTube **
https://youtu.be/O0B0d-ljO74
** Thank you to our sponsors! **
SLNT
Visit slnt.com to check out SLNT’s amazing line of Faraday bags and other products built to protect your privacy. As a listener of this podcast you receive 10% off your order at checkout using discount code “sharedsecurity”.
Click Armor
To find out how “gamification” of security awareness training can reduce cyber risks related to phishing and social engineering, and to get a free trial of Click Armor’s gamified awareness training platform, visit: https://clickarmor.ca/sharedsecurity
** Subscribe and follow the show **
Join the Shared Security Community on Reddit: https://www.reddit.com/r/SharedSecurityShow/
Subscribe on YouTube: https://www.youtube.com/c/SharedSecurityPodcast
Watch and Subscribe on Odysee (YouTube alternative)
https://odysee.com/@SharedSecurity:c
Follow us on Mastodon: https://infosec.exchange/@sharedsecurity
Follow us on Twitter: https://twitter.com/sharedsec
Website: https://sharedsecurity.net
Subscribe on your favorite podcast app: https://sharedsecurity.net/subscribe
Sign-up for our email newsletter to receive updates about the show, contest announcements, and special offers from our sponsors: http://eepurl.com/dwcc8D
Leave us a rating and review: https://ratethispodcast.com/sharedsecurity
Contact us: https://sharedsecurity.net/contact
The post Meta’s EU Ad Practices Ruled Illegal, Twitter API Data Breach, Vulnerabilities in Major Car Brands appeared first on The Shared Security Show.
SaaS Attacks: Compromising an Organization without Touching the Network
Back to School Cybersecurity, Phishing Pitfalls and Strategies, X’s (Twitter) Blocking Overhaul
Business Email Compromise Scams Revisited
The Current and Future State of Email Security with Andy Yen, CEO of Proton
Common Sense Advice for Hacker Summer Camp, AI Chatbot Attacks, What’s a Flipper Zero?
Your Digital Immortality is Coming, Apple and Google Are Data Gatekeepers, Satellite Security Risks Revealed
Microsoft Lost Its Keys, Voice Cloning Scams, The Biden-Harris Cybersecurity Labeling Program
First Ban on Selling Location Data, Prohibiting Password Managers, Real-Time Crime Center Concerns
Meta’s Threads and Your Privacy, Airline Reservation Scams, IDOR Srikes Back
MOVEit Cyberattack, The Problem with Password Rotations, Military Alert on Free Smartwatches
Security Podcasting, Hacking Stories, and The State of Firmware Security with Paul Asadoorian
The FTC’s Complaint Against Ring, Detecting Malware Infected Apps, America’s Most Cybersecure Companies
How to Break Into a Cybersecurity Career – Phillip Wylie
Netflix Cracks Down on Password Sharing, AI Legal Research Gone Wrong, Fake Identities and Surveillance Firms
Meta’s $1.3 Billion Fine, AI Hoax Hysteria, Montana’s TikTok Ban
Google Now Supports Passkeys, Risky New Top Level Domains, Twitter’s Encryption Dilemma
Private Tweets Exposed, Unauthorized Tracking Collaboration, AI Risks and Regulation
Juice Jacking Debunked, Photographer vs. AI Dataset, Google Authenticator Risks
Building a Healthy Security Culture: Insights from Kai Roer
Arkansas Social Media Consent Law, Android Malware Invasion, New Method of Keyless Car Theft
Create your
podcast in
minutes
It is Free
gm! crypto
Big Technology Podcast
The WAN Show
Cyber Security Headlines
The 404 Media Podcast