OT: Target got got (de facto Bad Cyber Stuff thread)

[forty_three]

^ Follow up, AT&T pushed an update to their networking systems which killed their connection to Microsoft, so all companies that used AT&T as their network provider suffered the outage.

AT&T is a terrible company.

 

[Bloody Brian Burke]

^ Follow up, AT&T pushed an update to their networking systems which killed their connection to Microsoft, so all companies that used AT&T as their network provider suffered the outage.

AT&T is a terrible company.

We don't have AT&T.

 

[puckhead]

Yeah, I was kind of hoping for a no-email, no-teams oops gotta sit on the couch day.

 

[forty_three]

Hackers steal nearly 1.7 million credit card numbers in breach

The data was compromised during a breach which spanned over 10 months.

mashable.com

This is so frustrating because most people aren't even aware that their information is being given to these third parties and the reason it is happening is because banks don't want to deal with the hassle of doing security the right way, so they pass the responsibility (and liability) to others. And you have no say in it and who gets to hold your info. When your info is included, you are left to wonder - was this when you stopped for gas on a road trip? That set of cool guitar picks online? Renting skates at a rink? WHO FUCKING KNOWS

Reminder:
- Put 2 factor authentication on all your banking.
- Anything that you use to move money, make sure you sign up for online access to it, even if you don't plan to use it. And 2 factor that as well.
- Create accounts at all three credit bureaus before someone else does for you. 2 factor it as well and then lock your credit. You can unlock it when you go to buy something big.
- When doing the "validation questions" - lie. Put your answers in your password manager in the noted. If the bad guy knows what your elemntary school actually was or what kind of car you actually used to have, they can reset your passwords. If you already set it up with the fact you went to Oxford for Kindergarten and your first car was a Ferrari 308, they will never guess it.
- Also, stop answering "getting to know you" surveys on Facebook that gives this info.
- Never respond to a text or Unsubscribe from emails you didn't sign up for. That just tells them your contact info is legit. Block and move on.
- For those of us in the US: Lock your SSN. You will need to unlock this when switching jobs or applying for credit or other things that require your SSN, which I remind you pretty much every one was breached recently.

Won't save you 100%, fraudsters are getting better every day. But you don't have to outrun the bear, you just have to outrun one other victim.

 

[forty_three]

Kia Vehicles Open to Remote Hacks via License Plate

The vulnerability is the latest discovered in connected vehicles in recent years, and it points out the cyber dangers lurking in automotive APIs.

www.darkreading.com

Not everything needs to be connected to the internet all the damn time.

Also, cars don't need all this stupid infotainment crap. Give me a 1984 Porsche 911 turbo with no screens any day.

 

[dare2be]

Kia Vehicles Open to Remote Hacks via License Plate

The vulnerability is the latest discovered in connected vehicles in recent years, and it points out the cyber dangers lurking in automotive APIs.

www.darkreading.com

Not everything needs to be connected to the internet all the damn time.

Also, cars don't need all this stupid infotainment crap. Give me a 1984 Porsche 911 turbo with no screens any day.

I do like my app notification when I seldom forget to lock my doors and can lock them remotely. That's a good safety feature, right?

 

[forty_three]

I do like my app notification when I seldom forget to lock my doors and can lock them remotely. That's a good safety feature, right?

Until someone figures out how to exploit the routine and unlocks everyone's doors for fun.

 

[mattola]

Kia Vehicles Open to Remote Hacks via License Plate

The vulnerability is the latest discovered in connected vehicles in recent years, and it points out the cyber dangers lurking in automotive APIs.

www.darkreading.com

Not everything needs to be connected to the internet all the damn time.

Also, cars don't need all this stupid infotainment crap. Give me a 1984 Porsche 911 turbo with no screens any day.

Beautiful selection

 

[forty_three]

Beautiful selection

View attachment 375621

IMO, that generation is just perfect. In my holy trinity with:

And

 

[Bloody Brian Burke]

IMO, that generation is just perfect. In my holy trinity with:

And

Sorry but none of these are brown, diesel or a wagon.

 

[forty_three]

And I am sorry, but that is not an AMG Hammer Wagon

 

[Bloody Brian Burke]

And I am sorry, but that is not an AMG Hammer Wagon

Well yeah but good luck finding the literal unicorn.

 

[forty_three]

Well yeah but good luck finding the literal unicorn.

I'd settle for the ordinary wagon with a body kit and fancy wheels.

Also somewhat of a unicorn.

 

[forty_three]

FIN7 hackers launch deepfake nude “generator” sites to spread malware

The notorious APT hacking group known as FIN7 launched a network of fake AI-powered deepnude generator sites to infect visitors with information-stealing malware.

www.bleepingcomputer.com

Duh

 

[All-Star Benchwarmer]

FIN7 hackers launch deepfake nude “generator” sites to spread malware

The notorious APT hacking group known as FIN7 launched a network of fake AI-powered deepnude generator sites to infect visitors with information-stealing malware.

www.bleepingcomputer.com

Duh

This might be why some posters have gone MIA.

 

[forty_three]

Hackers take control of robot vacuums in multiple US cities and abuse owners

Ecovacs robot vacuums in multiple US cities were hacked in the space of a few days, with the attacker physically controlling them and yelling obscenities through their onboard speakers.

www.abc.net.au

Something something not everything needs to be connected.

 

[mattola]

A business I have previously emailed seems to have been hacked. The business sent out a fake PDF file to everyone on their email list, including me. The message claimed to contain a PDF from a past visit regarding a transaction. People who opened the file started replying all with mass confusion, unsure of what happened after opening it and one said their computer was opening so many file folders. Then, suddenly, aIl the thread emails in my inbox (possibly our security) were wiped out of my inbox (I did not reply, open or click anything lol)

I think alot of people are going to have very bad weekends for their computers.

 

[forty_three]

A business I have previously emailed seems to have been hacked. The business sent out a fake PDF file to everyone on their email list, including me. The message claimed to contain a PDF from a past visit regarding a transaction. People who opened the file started replying all with mass confusion, unsure of what happened after opening it and one said their computer was opening so many file folders. Then, suddenly, aIl the thread emails in my inbox (possibly our security) were wiped out of my inbox (I did not reply, open or click anything lol)

I think alot of people are going to have very bad weekends for their computers.

Regarding your Security people nuking the bad emails:

Regarding you not clicking or opening something you found suspicious

 

[forty_three]

Wasn't sure where to put this, so placing here because it's going to affect cyber for a long time. I got it from one of the big data geeks at work who just spent the better part of an hour explaining to execs why our private instance of Chat GPT that was supposed to protect us from data leaks is feeding ridiculous responses.

'Model collapse': Scientists warn against letting AI eat its own tail | TechCrunch

If the models continue eating each other's data, perhaps without even knowing it, they'll progressively get weirder and dumber until they collapse.

techcrunch.com

Basically, when AI runs out of genuine human input to analyze, it starts to consume other AI inputs and essentially inbreeds and gets worse responses. So now that a majority of news articles and media are AI generated posing as human content, the other AI models are consuming it as if it was real for example. All of AI, no matter how large the model or how large a data set it's built off of will suffer the same fate.

Or, as has always been in Computing - Garbage In, Garbage out

 

[dash]

Or, as has always been in Computing - Garbage In, Garbage out

This probably belongs in the drives me nuts thread, but I always love it when I'm contacted by business users who tell me there's something wrong with the code, it keeps dumping when I run this program. My first question is along the lines of "were there some recent updates to the database tables that are accessed by the program?" because our program changes/version management are highly coordinated and need to go through approvals etc..

The usual reply: I'm not sure
My reply: Let me check

Then after verifying that yes, database table changes were made: Did you or somebody else make some database table changes recently because I see some inconsistent data?

The usual reply: I don't know
My reply: Well, we need to remove these records in order for the program to function correctly
Them: Please go ahead.
Me: Okay

And voila, problem solved