 |
The IT Privacy and Security Weekly Update.Author: R. Prescott Stearns Jr.
Into year five for this award-winning, light-hearted, lightweight IT privacy and security podcast that spans the globe in terms of issues covered with topics that draw in everyone from executive, to newbie, to tech specialist. Your investment of between 15 and 20 minutes a week will bring you up to speed on half a dozen current IT privacy and security stories from around the world to help you improve the management of your own privacy and security. Language: en-us Contact email: Get it Feed URL: Get it iTunes ID: Get it |
Listen Now...
EP 241.5 Deep Dive Cheap Sunglasses and The IT Privacy and Security Weekly Update for the Week Ending May 26th., 2025
Episode 241
Thursday, 8 May, 2025
Wearable technology like Ray-Ban Meta glasses presents significant privacy concerns by enabling frequent data collection without clear user controls, potentially capturing personal information of users and bystanders unknowingly.TikTok received a €530 million fine from the EU primarily because user data was remotely accessible from China, raising surveillance risks, and the platform failed to transparently disclose data transfer practices, violating EU regulations.Recent password security analysis reveals an ongoing epidemic of weak password reuse, with easily guessable passwords like "123456" and "password" remaining common, exposing users to dictionary and brute-force attacks. Microsoft aims to combat this by making new accounts passwordless by default starting May 2025, promoting secure authentication methods like passkeys and security keys to mitigate password-based threats.Trusted social media accounts, such as the New York Post's X account, can be exploited for scams by cybercriminals who hijack them to spread fraudulent links, often involving cryptocurrency schemes. These attacks leverage social engineering tactics, underscoring the need for vigilance even with messages from reputable sources.Supply-chain attacks in e-commerce, such as those involving compromised Magento plug-ins, pose serious risks by embedding malware into widely used software. This malware can remain dormant for years before activating to steal payment card data, impacting thousands of unsuspecting websites and customers simultaneously.Modern vehicles collect extensive driver data (speed, location, braking habits) and may share this information with third parties, including insurance companies, without explicit user consent. Legal actions against automakers like Toyota highlight concerns over privacy violations and unauthorized commercial use of sensitive personal data.U.S. Customs and Border Protection (CBP) seeks to enhance surveillance by implementing facial recognition technology to capture and match passenger faces to government records at border crossings. This raises civil liberties issues due to widespread tracking and potential misidentification.
