Snapchat images may have been breached through third-party service

snapsaved_logo

According to reports, some 4chan users are claiming that a a third-party app used to access the Snapchat service has been breached giving access to over 200,000 images matched with usernames. The app in question is named SnapSaved and is used to get around Snapchat’s system that alerts users when someone grabs a screenshot of an image that has been posted. Apparently SnapSaved was using a cloud architecture to save the images being grabbed from Snapchat, along with everything else that was being passed to a user, like usernames. According to posters on 4chan, the image database will be posted online by this Sunday, October 12th.
Read more

AT&T issues apology for customer data breach

AT&T_Logo_01_TA

AT&T has revealed that an employee inappropriately accessed customer data, including Social Security numbers and other account data. It is not clear whether the employee may have done anything beyond accessing data that was off limits, but the company is offering to reverse any unauthorized charges incurred by customers. AT&T is also offering a free year of credit monitoring services to affected customers.
Read more

Dropbox, Google, Open Technology Fund, Security Researchers to simplify security tools

Google_Logo_Visitors_47558

There seems to be a lot of talk about security and privacy today. First Apple took shots at Google in their statement about privacy. Then it was revealed that Google would enable device encryption by default in Android L. Now Google is collaborating with Dropbox, the Open Technology Fund, and leading security researchers for Simply Secure, a new organization that will make open source security tools simpler and easier for people to use.

Many of the security tools that are in place are just too complicated for the average consumer. Take two-factor authentication for instance. It’s widely used in many services, including Gmail and Dropbox, but so few people utilize it. Most people don’t even lock their smartphones.


Read more

New Android vulnerability described as “a privacy disaster”

android-bug2

Security researcher Rafay Baloch released information about a vulnerability in the Same Origin Policy (SOP) protection used by browsers running on Android devices. The SOP is used to stop malicious code from spreading from one site to sites that a user has open in other tabs. According to some sources, this vulnerability is “a privacy disaster.” It appears to be limited to the Android Open Source Platform(AOSP) Browser, which has been replaced by Chrome on more recent builds of Android, and does not impact users on Android 4.4 or higher.
Read more

Google updates security section in Account settings

google_account_security_settings_02

As Google continues to deal with the fallout from the posting of Gmail account information on a Russian forum, Google has added a new Security tab for Google accounts to help make it a little easier for users to update and maintain their security settings. It is likely a coincidence that this change has occurred on the heels of yesterday’s events, which Google says is not as bad as initially reported. However, it could be in response to what happened as Google would be a company that has the resources to throw at the issue and rollout a change quickly.
Read more