Techlore Surveillance Report Surveillance Report 11
17 snips
May 4, 2020 Research uncovers Xiaomi's browser logging user activity, raising privacy concerns. Chrome and Apple face vulnerabilities that could expose users. Amazon's thermal cameras for employee screenings add a layer of secrecy to workplace safety. Clearview AI considers linking contact tracing to their photo database, intensifying privacy fears. A data breach at Shegg leaks sensitive employee information, while Android's EventBot malware targets sensitive bank data. Meanwhile, a UK leak reveals millions of journey logs, highlighting the pervasive nature of surveillance.
AI Snips
Chapters
Transcript
Episode notes
Revoke Accessibility To Block EventBot
- Remove suspicious Android apps and avoid sideloading because EventBot abuses accessibility to steal credentials.
- Revoke accessibility permissions and use antivirus to detect keylogging and notification-stealing malware.
Plugins Multiply WordPress Risk
- WordPress plugins continue to be a major attack surface, with one plugin exposing 100,000 sites via XSS.
- Keep plugins updated and avoid unnecessary plugins to reduce compromise risk.
Targeted Attacks Bypass Basic Defenses
- High-profile executives were targeted via corporate email compromises leveraging file-sharing services.
- Targeted attacks bypass ordinary end-user protections and require focused defenses.