Cyber Security

Alarming Report: Microsoft collects & stores personal behavioral data on a large scale via Office 2016/365

Alarming Report: Microsoft collects & stores personal behavioral data on a large scale via Office 2016/365

Cyber Security, Technology
A new impact assessment shows privacy risks Microsoft Office ProPlus Enterprise. On behalf of the Ministry of Security and Justice, Privacy Company carried out a DPIA on DPIA on Microsoft Office ProPlus (Office 2016 MSI and Office 365 CTR). At the request of the Ministry, they published a blog about the findings. The SLM Rijk conducts negotiations with Microsoft for approximately 300.000 digital work stations of the national government. The Enterprise version of the Office software is deployed by different governmental organisations, such as ministries, the judiciary, the police and the taxing authority. The results of this Data Protection Impact Assessment (DPIA) are alarming. Microsoft collects and stores personal data about the behaviour of individual employees on a large scale...
CA Report, Companies Still Use Dumb Passwords, Online Abuse in Kenya Up by 1155%

CA Report, Companies Still Use Dumb Passwords, Online Abuse in Kenya Up by 1155%

Cyber Security
The Communications Authority of Kenya recently released their Q1 2018 Sector Statistics Report and it has some interesting tidbits. First is the section about the National Cyber Threat Landscape. The National KE-CIRT/CC detected over 7.9 million cyber threats, which was a 25% drop compared to the previous quarter. The most interesting tidbit under the various list of cyber threats detected is the rise of online abuse in the time frame the data was collected. According to CA, online abuse has increased by 1155% compared to last quarter (1757 cases vs 140) which is quite significant. During this quarter, the National KE-CIRT/CC validated and escalated 3,488 cases, of which online abuse took the lions share (1737 cases) up from 99 last quarter. This was a 1654.5% increase. According
Smart speakers from secondary sellers could be pre-loaded with spyware

Smart speakers from secondary sellers could be pre-loaded with spyware

Cyber Security, Technology
It seems like there are smart speakers just about everywhere these days and security experts warn smart speakers from secondary sellers could be used to spy on unsuspecting consumers, according to Forbes. Ariel Hochstadt, the co-founder of online privacy company vpnMentor, warned that it’s possible for hackers and malicious actors to manipulate smart home speakers, and specifically to bug the device and insert spying tools. “The buyer would not be aware that they have purchased a pre-hacked device and, therefore, once in the home, the hackers would be able to access it remotely without ever having to enter the home,” he warned, per Forbes. Primarily at risk to this type of attack is the first-generation Amazon Echo — the original model of Amazon’s wildly popular smart speaker equippe
Banks and Retailers Industry Tracking How Users Type, Swipe and Tap

Banks and Retailers Industry Tracking How Users Type, Swipe and Tap

Cyber Security, Internet, Mobile, social media
When you’re browsing a website and the mouse cursor disappears, it might be a computer glitch — or it might be a deliberate test to find out who you are. The way you press, scroll and type on a phone screen or keyboard can be as unique as your fingerprints or facial features. To fight fraud, a growing number of banks and merchants are tracking visitors’ physical movements as they use websites and apps. Some use the technology only to weed out automated attacks and suspicious transactions, but others are going significantly further, amassing tens of millions of profiles that can identify customers by how they touch, hold and tap their devices. The data collection is invisible to those being watched. Using sensors in your phone or code on websites, companies can gather thousands of da
70% of Kenyans vulnerable to digital financial transaction fraud says USSD firm

70% of Kenyans vulnerable to digital financial transaction fraud says USSD firm

Cyber Security, Mobile, social media
Myriad Connect has concluded recent research that found that over 70% of Kenyans have been the victims of digital financial transaction fraud, or know someone who has. Other figures indicate 57% sms, 73% phone calls, 17% social media and 19% email were the channels through which Kenyan consumers were targeted to become victims of financial service transaction fraud. “Financial service transaction fraud in Kenya is costing banks billions and customers their life savings,” says Fabien Delanaud, GM of Myriad Connect. “While financial service transaction fraud is a global issue; Kenya has been a leader in the adoption of mobile and digital payments, which unfortunately brings with it a growing risk of fraud.” One of the most prolific forms of financial service fraud is SIM swap fraud, wh