Shared Security

This week we discuss the top 3 location tracking apps in the Apple App Store and Google Play and which ones sell your data. Plus, details about recent fake Chick-fil-A and Olive Garden vouchers on Facebook.

A new attack uses Alexa's functionality to force Amazon Echo devices to make self-issued commands, payment app Zelle has become popular with fraudsters and banks don't seem to care, and details about hackers who have stolen source code for Samsung Galaxy devices.

This week we discuss some of the more interesting hacks of Russian assets, technology, and more. Scott discusses recent credential stuffing attacks on Microsoft 365 accounts, and a fascinating story about ice cream machine "hackers" that are suing McDonald's for $900 million dollars in damages.

How TikTok can circumvent privacy protections and performs device tracking that gives TikTok full access to user data, the US government warns about ransomware attacks after Biden's new sanctions against Russia, and details about the latest beta for iOS 15.4 which includes new features designed to prevent Apple AirTags from being used to stalk people.

MoviePass will use facial recognition and eye tracking to make sure you're watching ads, new types of shipment-delivery scams are being used to spread malware, and details on the arrests of a SIM swapping gang and how you can protect yourself against a SIM swapping attack.

The EARN IT Act is back for a second time which would pave the way for a new massive government surveillance system in the US, romance scams are on the rise so don't fall for love in all the wrong places, and details about a new ransomware attack that wants you to like and subscribe, or else!

Researchers have discovered a new web tracking technique using your graphics card, scammers are exploiting security weaknesses on job recruitment websites to post fraudulent job postings, and how a hacker single-handedly took down North Korea's Internet.

Hacktivists have hacked a Belarus rail system in an attempt to stop Russian military buildup, someone disclosed a slew of vulnerabilities in the popular Insta360 ONE X2 camera, and Google gets accused of "deceptive" location tracking in multiple lawsuits.

Canada’s federal government admitted to surveilling its population’s movements during the COVID-19 lock-down by tracking 33 million phones, the FBI warned that a hacker group has been sending malware-laden USB sticks to companies, and details on a new law in the United States which will install kill switches in new cars.

Kelly Finnerty, Director of Brand at Startpage, joins co-host Tom Eston to discuss the very important topic of digital wellbeing. In this episode you'll learn about the mental, financial, and societal impacts of constant tracking. Plus, what are some holistic approaches and tactics that we can use to help our own digital wellbeing. Kelly also shares details about Startpage's new web browser extension "Startpage Privacy Protection".

Norton 360, a popular antivirus product, has installed a cryptocurrency mining program on its customers’ computers, some cities in Texas have been hit with a phishing scam designed to get users to pay through fraudulent QR code stickers on public parking meters, and how Facebook is still collecting data about you even if you deactivate your Facebook account. All this plus the launch of the Shared Security Community on Reddit! (https://www.reddit.com/r/SharedSecurityShow/)

A phone scam targeting psychologists reveals that even professionals can become victims, stolen multi-million-dollar NFT's results in a "all my apes gone" plea for help, and details on a skimmer supply chain attack on more than 100 real estate websites.

LastPass users received emails about their master passwords being compromised, details about the privacy policies of new cars, and a story about an Amazon Echo that proposed a lethal challenge to a ten-year-old girl.

In our last monthly show of the year we discuss Web3. What is it and what will it mean to have a decentralized Internet. If you've wanted to know what Web3, DeFI, NFTs, and cryptocurrency means for cybersecurity and privacy this is one episode you don't want to miss!

In our last weekly episode of the year, we discuss the top cybersecurity and privacy news from 2021, a recap of our previous "predictions", and what we think we'll see next year. Happy New Year!