The Wiretap: Free VPNs Are A Danger To Your Privacy
Www.oeisdigitalinvestigator.com:
The Wiretap is your weekly digest of cybersecurity, internet privacy and surveillance news. To get it in your inbox, subscribe here.
Free VPN apps are putting children’s privacy in danger, researchers say.
getty
Virtual private networks, or VPNs, are used by web users the world over to encrypt their web traffic and hide their IP addresses. Often, they’re entirely benign tools that promise an extra layer of privacy.
But some VPNs, often those that don’t cost a penny, actually undermine user privacy. Forbes’ Emily Baker-White reported earlier this week that children are increasingly using free VPNs to circumvent their schools’ attempts to prevent them from browsing porn or other inappropriate websites.
Research being shared with U.S. lawmakers this week shows that some of those VPNs have links to China and could be sharing children’s data with the Chinese government.
Last week, a Chinese national was charged for allegedly attaching malware to free VPNs to hack into as many as 19 million computers, creating a botnet used by cybercriminals to hide their tracks and acquire over $8 billion in fraudulent revenue.
Experts recommend paid-for VPNs from reputable vendors, such as F-Secure or Proton, which typically carry less risk and promise genuine privacy boosts.
Www.oeisdigitalinvestigator.com: Google’s Privacy Chief Is Out, With No Plans To Replace Him
Google’s chief privacy officer leaves amidst wider layoffs at the tech giant. (Photo by Jaap Arriens/NurPhoto via Getty Images)
NurPhoto via Getty Images
Keith Enright is leaving Google after 13 years at the company as part of a broad restructuring, Forbes has learned. Matthew Bye, a 15-year veteran and director of competition law, is also departing.
Www.oeisdigitalinvestigator.com: Stories You Have To Read Today
Today Forbes launched the Midas List, our annual ranking of the world’s top venture capitalists. Highlights from a privacy/security perspective include Shardul Shah, who’s invested in Datadog and Wiz; Scott Sandell, who’s backed CloudFlare; and Trae Stephens, whose investments in the space include Anduril.
A TikTok exploit, which only requires that the victim open a DM, is leading to major celebrity and corporate accounts being hacked. CNN and Sony are two victims. TikTok says it’s fixing the problem.
Ticketmaster was hacked, its owner LiveNation confirmed, after a hacker known as ShinyHunters claimed they had stolen 560 million customer records. The source of the breach was traced back to a spate of account hacks at cloud and analytics provider Snowflake. After a joint investigation with Google’s Mandiant and security giant CrowdStrike, Snowflake said cybercriminals had used stolen credentials obtained by password-pilfering malware and targeted accounts without multi-factor authentication.
404 Media obtained an internal Google database detailing thousands of security and privacy incidents going back to 2016. They included an event where the company accidentally recorded childrens’ voices and another where Street View collected license plate numbers.
Www.oeisdigitalinvestigator.com: Winner of the Week
Europol announced a successful takedown of a number of malware families, claiming it was “the largest ever operation against botnets.” Law enforcement agencies across the world took part in the investigation, dubbed Operation Endgame, which led to over 100 servers being taken down and four arrests, one in Armenia, three in Ukraine. The operation focused on “droppers,” malicious code “designed to install other malware onto a target system.”
Www.oeisdigitalinvestigator.com: Loser of the Week
A former American marine and police officer, John Mark Dougan, has been linked to more than 150 fake local news sites spreading disinformation, according to research from misinformation monitor NewsGuard. The sites mimic local publications with names like Boston Times and New York News Daily and have spread false information around the Ukraine war. Duggan currently lives in Moscow, where he was granted asylum after he fled accusations he was a hacker who published sensitive information on thousands of Floridian cops, judges, and local officials. He denied those charges and, in comments to NBC News, claimed no knowledge of the fake news sites.
Www.oeisdigitalinvestigator.com: More On Forbes
ForbesBoom Or Doom: Inside The Silicon Valley Influence Battle For AI’s FutureBy Alex KonradForbesHow Midas Lister Annie Lamont Became A Health Tech Heavy HitterBy Rashi ShrivastavaForbesMeet The Best Little Sale-Leaseback Merchants In ArkansasBy Brandon Kochkodin
