Jayson Massey @jaysonmassey@qoto.org
Thinker. Coffee drinker. @jaysonmassey on Twitter. #cybersecurity #student in #Philadelphia
Joined Nov 2022
"Attackers who infiltrate a social media account often immediately change the recovery email and phone number for the account, essentially locking the owner out. For the average Joe, attempting to get a resolution when this happens can be extremely difficult"
"They found that 98.3% of organizations worldwide work closely with at least one third-party vendor that has been breached in the last two years and that over 50% of them have an indirect relationship with 200 fourth-party vendors – third-party vendor’s partners or suppliers – that have been breached in the last two years."
https://www.infosecurity-magazine.com/news/almost-all-organizations-recently/
"Apple is famous for its reputation—warranted or otherwise—for filtering out malicious apps before they end up in the App Store. Combined with detailed fake online profiles and elaborate backstories the scammers use to lure victims, the presence of the apps in the App Store made the ruse all the more convincing."
“This attack builds upon the wave of HTML attachment attacks that we’ve recently observed targeting our customers, whether they be SMBs or enterprises.”
https://www.techradar.com/news/this-odd-phishing-scam-targets-victims-with-a-blank-image
"In one of the first proofs-of-concept, NYU professor Brendan Dolan-Gavitt used ChatGPT to exploit a buffer overflow vulnerability. Other examples include writing malware with lightning speed and crafting convincing, grammatically correct phishing emails."
https://www.darkreading.com/vulnerabilities-threats/3-ways-chatgpt-will-change-infosec-in-2023
"The data stolen included customer name, billing address, email, phone number, date of birth, T-Mobile account number, as well as information on the number of customer lines and plan features."
https://krebsonsecurity.com/2023/01/new-t-mobile-breach-affects-37-million-accounts/
Change your PayPal password just in case!
"According to PayPal, hackers managed to access the personal information of 34,942 users; however, no transactions were performed from the breached accounts."
"Hornetsecurity on Thursday reported that 33% of companies are not offering any cybersecurity awareness training to users who work remotely.
The study also pointed out that this causes security issues because nearly three-quarters, 74%, of remote staff have access to critical data, which creates more risk for companies in this new hybrid-working world."
Cybersecurity tip: Change the default password on your devices, even your car!
"Believe it or not, this incredibly creepy hack hinged on the fact that the companies were giving users the default password of “123456.”"
"More than ever, we saw efforts to catch and convict cyber criminals increase throughout the year"
Do me a favor and get more cyber-secure in 2023 for free! How?
Go to haveibeenpwned.com and enter your email. If you see a site on that list, CHANGE YOUR PASSWORD to a new one.
Use Bitwarden like @obi suggests for new passwords. Thanks Obi!
Tags: #cybersecurity #breach #iphone #twitter
Chad Loder is reporting a Twitter breach of U.S. and European accounts. "Any Twitter account with "Let others find you by your phone" enabled in Discoverability settings is affected." See more at his Twitter post:
#introduction I’m Jay! I am a #cybersecurity #student in #Philadelphia, PA, USA. Currently studying #javascript, #intro to #cybersecurity, #networking and #environmental sciences. Previously worked in software quality assurance.
Thinker. Coffee drinker. @jaysonmassey on Twitter. #cybersecurity #student in #Philadelphia
Joined Nov 2022
