In this episode, we explore the rise of Threads, a new social media app developed by Meta, which has already attracted 10 million users in just seven hours. However, there’s a catch – the app collects extensive personal data, sparking concerns about privacy.
Next, we dive into the world of airline reservation scams, exposing how fraudsters exploit a loophole to deceive unsuspecting travelers. Learn how to protect yourself and avoid being swindled by these ticket scams.
Finally, we discuss the security vulnerability discovered in Eaton’s smart security alarm systems, highlighting the significant risks of IDOR (Insecure Direct Object Reference) vulnerabilities and the potential for unauthorized access.
** Links mentioned on the show *
Threads, Meta’s Twitter rival, is tracking you in all sorts of ways
https://mashable.com/article/threads-tracking-data
https://thehackernews.com/2023/07/instagrams-twitter-alternative-threads.html
https://about.fb.com/news/2023/07/introducing-threads-new-app-text-sharing/
How Your Real Flight Reservation Can Be Used to Scam You
https://www.wired.com/story/plane-ticket-booking-hold-scam/
A simple bug exposed access to thousands of smart security alarm systems
https://techcrunch.com/2023/06/16/eaton-secureconnect-security-alarm-vulnerability/
** Watch this episode on YouTube **
https://youtu.be/nZCZk9myDcA
** Become a Shared Security Supporter **
For only $5 per month get exclusive access to ad-free episodes, listen to new episodes before they are released, get access to our private Discord server, receive a monthly shout-out on the show, and get a discount code for 15% off merch at the Shared Security store. Become a supporter today! https://patreon.com/SharedSecurity
** Thank you to our sponsors! **
SLNT
Visit slnt.com to check out SLNT’s amazing line of Faraday bags and other products built to protect your privacy. As a listener of this podcast you receive 10% off your order at checkout using discount code “sharedsecurity”.
Click Armor
To find out how “gamification” of security awareness training can reduce cyber risks related to phishing and social engineering, and to get a free trial of Click Armor’s gamified awareness training platform, visit: https://clickarmor.ca/sharedsecurity
** Subscribe and follow the podcast **
Join the Shared Security Community on Reddit: https://www.reddit.com/r/SharedSecurityShow/
Subscribe on YouTube: https://www.youtube.com/c/SharedSecurityPodcast
Watch and Subscribe on Odysee (YouTube alternative)
https://odysee.com/@SharedSecurity:c
Follow us on Mastodon: https://infosec.exchange/@sharedsecurity
Follow us on Twitter: https://twitter.com/sharedsec
Visit our website: https://sharedsecurity.net
Subscribe on your favorite podcast app: https://sharedsecurity.net/subscribe
Sign-up for our email newsletter to receive updates about the podcast, contest announcements, and special offers from our sponsors: http://eepurl.com/dwcc8D
Leave us a rating and review: https://ratethispodcast.com/sharedsecurity
Contact us: https://sharedsecurity.net/contact
The post Meta’s Threads and Your Privacy, Airline Reservation Scams, IDOR Srikes Back appeared first on Shared Security Podcast.
Federal Data Agency for Social Media, Squirrelwaffle Malspam, Ransomware Hits U.S. Candymaker
Missouri Governor and F12 Hacking, Global Ransomware Meeting, Fake Government Websites
Killware Clickbait, 1Password Password Sharing Feature, Android Phone Snooping
Security Champions Framework, The Great Facebook Outage, Twitch Data Breach
Apple AirTag Good Samaritan Attack, iCloud+, Amazon Astro Dog and Ring Camera Drone
Multi-Factor Authentication and Authenticator Apps
No Password Microsoft Accounts, Facebook Smart Glasses, Security.txt Internet Standard
iMessage Zero-Click Exploit, Leaked Guntrader Firearms Data, 60 Million Fitness Tracking Records Exposed
ProtonMail IP Address Logging Controversy, Fake Bot Disinformation, Correctional Facility Robot Overlords
Election Security and the Packet Capture Controversy with Special Guest Rafal Los
What Happens to Your Social Media Accounts After You Die?
T-Mobile Hacker Identified, China’s New Privacy Law, Tesla Bot Announcement
T-Mobile Data Breach, Tinder Identity Verification, Magnetic Stripe Phase Out
Largest Cryptocurrency Hack in History, $10k For Stolen Network Access, Your Identity and the Metaverse
CISA JCDC Announcement, Apple’s Child Abuse Image Scanning, Amazon Pays You for Your Biometric Data
Reboot Your Smartphone, FBI’s Top Targeted Vulnerabilities, Flirty Account Dupes Defense Contractors
How to Protect Yourself from Gift Card Scams
Pegasus Spyware is Back, Twitter Hacker Arrested, 16-Year-Old Printer Bug
Popular Myths about VPNs
Targeted Dream Incubation, TikTok Data Sharing, Chrome and Firefox Updates
Create your
podcast in
minutes
It is Free
WSJ Tech News Briefing
gm! crypto
The 404 Media Podcast
Big Technology Podcast
CyberWire Daily