Pyrzout :vm:<p>Aura or LifeLock: Who Offers Better Identity Protection in 2025? – Source:hackread.com <a href="https://ciso2ciso.com/aura-or-lifelock-who-offers-better-identity-protection-in-2025-sourcehackread-com/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">ciso2ciso.com/aura-or-lifelock</span><span class="invisible">-who-offers-better-identity-protection-in-2025-sourcehackread-com/</span></a> <a href="https://social.skynetcloud.site/tags/1CyberSecurityNewsPost" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>1CyberSecurityNewsPost</span></a> <a href="https://social.skynetcloud.site/tags/IdentityProtection" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IdentityProtection</span></a> <a href="https://social.skynetcloud.site/tags/CyberSecurityNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberSecurityNews</span></a> <a href="https://social.skynetcloud.site/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://social.skynetcloud.site/tags/identitytheft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>identitytheft</span></a> <a href="https://social.skynetcloud.site/tags/Hackread" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Hackread</span></a> <a href="https://social.skynetcloud.site/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://social.skynetcloud.site/tags/DarkWeb" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DarkWeb</span></a> <a href="https://social.skynetcloud.site/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>privacy</span></a> <a href="https://social.skynetcloud.site/tags/Scam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Scam</span></a></p>
Recent searches
No recent searches
Search options
Only available when logged in.
fosstodon.org is one of the many independent Mastodon servers you can use to participate in the fediverse.
Fosstodon is an invite only Mastodon instance that is open to those who are interested in technology; particularly free & open source software.
If you wish to join, contact us for an invite.
Administered by:
Server stats:
10Kactive users
fosstodon.org: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.7
#identitytheft
5 posts · 4 participants · 0 posts today
ResearchBuzz: Firehose<p>Bleeping Computer: North Korean IT worker army expands operations in Europe. “North Korea’s IT workers have expanded operations beyond the United States and are now increasingly targeting organizations across Europe. Also referred to as ‘IT warriors,’ they hide their true identities and pose as workers based in other countries by connecting via laptop farms to fraudulently secure positions […]</p><p><a href="https://rbfirehose.com/2025/04/02/bleeping-computer-north-korean-it-worker-army-expands-operations-in-europe/" class="" rel="nofollow noopener noreferrer" target="_blank">https://rbfirehose.com/2025/04/02/bleeping-computer-north-korean-it-worker-army-expands-operations-in-europe/</a></p>
BossLogic<p>Incredible ad highlighting risks of misused AI. Kudos to Duetsche Telekom for the creativity. AI has opened up new possibilities, some good, some bad. Be aware of what’s possible and how information you share can be used. <a href="https://mastodon.social/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AI</span></a> <a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://mastodon.social/tags/IdentityTheft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IdentityTheft</span></a><br><a href="https://bit.ly/49Mj4KN" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">bit.ly/49Mj4KN</span><span class="invisible"></span></a></p>
ResearchBuzz: Firehose<p>Gizmodo: People Making AI Studio Ghibli Images Are Now Producing Fake Legal Letters to Go With Their Fake Art. “The trend of using Open AI’s ChatGPT to create AI images in the distinctive style of Studio Ghibli probably should have ceased the moment the official White House X account hopped aboard. But there’s a new wrinkle in the story today, as one of the trend’s proponents posted a […]</p><p><a href="https://rbfirehose.com/2025/03/29/gizmodo-people-making-ai-studio-ghibli-images-are-now-producing-fake-legal-letters-to-go-with-their-fake-art/" class="" rel="nofollow noopener noreferrer" target="_blank">https://rbfirehose.com/2025/03/29/gizmodo-people-making-ai-studio-ghibli-images-are-now-producing-fake-legal-letters-to-go-with-their-fake-art/</a></p>
ResearchBuzz: Firehose<p>CBC: Fake election news ads are luring people into investment schemes. We got some taken down. “Fake CBC News articles that link to sketchy investment schemes are flooding social media with sensational headlines about the Canadian election and other recent political developments. CBC’s visual investigations unit reported on a similar scam in late January, where fake articles lured victims to […]</p><p><a href="https://rbfirehose.com/2025/03/29/cbc-fake-election-news-ads-are-luring-people-into-investment-schemes-we-got-some-taken-down/" class="" rel="nofollow noopener noreferrer" target="_blank">https://rbfirehose.com/2025/03/29/cbc-fake-election-news-ads-are-luring-people-into-investment-schemes-we-got-some-taken-down/</a></p>
Nonilex<p><a href="https://masto.ai/tags/Trump" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Trump</span></a> on Friday commuted the sentence & probation of <a href="https://masto.ai/tags/CarlosWatson" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CarlosWatson</span></a>, a co-founder of the now-defunct <a href="https://masto.ai/tags/digital" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>digital</span></a> <a href="https://masto.ai/tags/media" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>media</span></a> company Ozy Media, on the day he was set to surrender to prison.</p><p>Watson was sentenced in Dec to almost 10yrs in <a href="https://masto.ai/tags/prison" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>prison</span></a> for <a href="https://masto.ai/tags/fraud" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>fraud</span></a>, <a href="https://masto.ai/tags/IdentityTheft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IdentityTheft</span></a>, <a href="https://masto.ai/tags/SecuritiesFraud" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SecuritiesFraud</span></a>, & <a href="https://masto.ai/tags/WireFraud" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WireFraud</span></a>. </p><p>Watson & Ozy were also ordered to pay $96M in restitution & forfeiture. As part of Trump’s commutation, they will no longer have to pay.</p><p><a href="https://masto.ai/tags/law" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>law</span></a> <a href="https://masto.ai/tags/felon47" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>felon47</span></a> <a href="https://masto.ai/tags/CFPB" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CFPB</span></a> <a href="https://masto.ai/tags/SEC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SEC</span></a> <a href="https://masto.ai/tags/corruption" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>corruption</span></a> <br><a href="https://www.cnbc.com/2025/03/28/trump-commutes-sentences-of-ozy-media-founder-carlos-watson-and-company.html" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">cnbc.com/2025/03/28/trump-comm</span><span class="invisible">utes-sentences-of-ozy-media-founder-carlos-watson-and-company.html</span></a></p>
Pyrzout :vm:<p>“This fraud destroyed my life.” Man ends up with criminal record after ID was stolen <a href="https://www.malwarebytes.com/blog/news/2025/03/this-fraud-destroyed-my-life-man-ends-up-with-criminal-record-after-id-was-stolen" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">malwarebytes.com/blog/news/202</span><span class="invisible">5/03/this-fraud-destroyed-my-life-man-ends-up-with-criminal-record-after-id-was-stolen</span></a> <a href="https://social.skynetcloud.site/tags/identitytheft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>identitytheft</span></a> <a href="https://social.skynetcloud.site/tags/stolenID" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>stolenID</span></a> <a href="https://social.skynetcloud.site/tags/News" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>News</span></a></p>
ResearchBuzz: Firehose<p>AFP: Spain seeks to criminalize AI-generated sexual images. “The government wants ‘deepfakes of a sexual or seriously insulting nature’ to be ‘considered crimes against moral integrity,’ Justice Minister Felix Bolanos told a news conference after a weekly cabinet meeting. In a statement, the government said the measure would be part of a bill aimed at ‘protecting young girls and boys as well […]</p><p><a href="https://rbfirehose.com/2025/03/26/afp-spain-seeks-to-criminalize-ai-generated-sexual-images/" class="" rel="nofollow noopener noreferrer" target="_blank">https://rbfirehose.com/2025/03/26/afp-spain-seeks-to-criminalize-ai-generated-sexual-images/</a></p>
LavX News<p>E-ZPass Phishing Scams: A Growing Threat in Cybersecurity</p><p>As phishing scams evolve, the recent surge in E-ZPass-related smishing attacks highlights the urgent need for cybersecurity awareness. With over 60,000 reports logged, these scams are not just a nuisa...</p><p><a href="https://news.lavx.hu/article/e-zpass-phishing-scams-a-growing-threat-in-cybersecurity" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://</span><span class="ellipsis">news.lavx.hu/article/e-zpass-p</span><span class="invisible">hishing-scams-a-growing-threat-in-cybersecurity</span></a></p><p><a href="https://mastodon.cloud/tags/news" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>news</span></a> <a href="https://mastodon.cloud/tags/tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>tech</span></a> <a href="https://mastodon.cloud/tags/IdentityTheft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IdentityTheft</span></a> <a href="https://mastodon.cloud/tags/PhishingScams" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PhishingScams</span></a> <a href="https://mastodon.cloud/tags/CybersecurityAwareness" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CybersecurityAwareness</span></a></p>
Negative12DollarBill<p>Security-focused people … my friend was recently in a maternity hospital and the hallway was covered in cute leaf and flower decals, each containing the full name and birthdate of a child who'd been born there.</p><p>… is this a good idea?</p><p><a href="https://techhub.social/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://techhub.social/tags/Privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Privacy</span></a> <a href="https://techhub.social/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InfoSec</span></a> <a href="https://techhub.social/tags/Identity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Identity</span></a> <a href="https://techhub.social/tags/IdentityTheft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IdentityTheft</span></a> <a href="https://techhub.social/tags/PII" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PII</span></a></p>
Pyrzout :vm:<p>Former University of Michigan Football Coach Indicted on Charges of Unauthorized Access and Identity Theft <a href="https://thecyberexpress.com/ex-coach-indicted-for-unauthorized-access/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thecyberexpress.com/ex-coach-i</span><span class="invisible">ndicted-for-unauthorized-access/</span></a> <a href="https://social.skynetcloud.site/tags/TheCyberExpressNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TheCyberExpressNews</span></a> <a href="https://social.skynetcloud.site/tags/unauthorizedaccess" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>unauthorizedaccess</span></a> <a href="https://social.skynetcloud.site/tags/TheCyberExpress" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TheCyberExpress</span></a> <a href="https://social.skynetcloud.site/tags/FirewallDaily" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FirewallDaily</span></a> <a href="https://social.skynetcloud.site/tags/identitytheft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>identitytheft</span></a> <a href="https://social.skynetcloud.site/tags/CyberNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberNews</span></a> <a href="https://social.skynetcloud.site/tags/databases" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>databases</span></a> <a href="https://social.skynetcloud.site/tags/FBI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FBI</span></a></p>
Pyrzout :vm:<p>Ex-Michigan, Ravens Football Coach Charged with Hacking Athlete Accounts – Source: securityboulevard.com <a href="https://ciso2ciso.com/ex-michigan-ravens-football-coach-charged-with-hacking-athlete-accounts-source-securityboulevard-com/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">ciso2ciso.com/ex-michigan-rave</span><span class="invisible">ns-football-coach-charged-with-hacking-athlete-accounts-source-securityboulevard-com/</span></a> <a href="https://social.skynetcloud.site/tags/SecurityBoulevard" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SecurityBoulevard</span></a>(Original) <a href="https://social.skynetcloud.site/tags/rssfeedpostgeneratorecho" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>rssfeedpostgeneratorecho</span></a> <a href="https://social.skynetcloud.site/tags/CyberSecurityNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberSecurityNews</span></a> <a href="https://social.skynetcloud.site/tags/SecurityBoulevard" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SecurityBoulevard</span></a> <a href="https://social.skynetcloud.site/tags/CloudDataStorage" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CloudDataStorage</span></a> <a href="https://social.skynetcloud.site/tags/Identity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Identity</span></a>&Access <a href="https://social.skynetcloud.site/tags/NetworkSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NetworkSecurity</span></a> <a href="https://social.skynetcloud.site/tags/accounthacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>accounthacking</span></a> <a href="https://social.skynetcloud.site/tags/SocialFacebook" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SocialFacebook</span></a> <a href="https://social.skynetcloud.site/tags/SocialLinkedIn" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SocialLinkedIn</span></a> <a href="https://social.skynetcloud.site/tags/CloudSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CloudSecurity</span></a> <a href="https://social.skynetcloud.site/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cybersecurity</span></a> <a href="https://social.skynetcloud.site/tags/Identitytheft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Identitytheft</span></a> <a href="https://social.skynetcloud.site/tags/datasecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>datasecurity</span></a> <a href="https://social.skynetcloud.site/tags/DataPrivacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DataPrivacy</span></a> <a href="https://social.skynetcloud.site/tags/News" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>News</span></a></p>
Jesse Alexander, WB2IFS/3<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@briankrebs" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>briankrebs</span></a></span> is there any evidence that <a href="https://mastodon.hams.social/tags/DOGE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DOGE</span></a> is releasing citizens <a href="https://mastodon.hams.social/tags/PII" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PII</span></a> intentionally or otherwise that is being used by <a href="https://mastodon.hams.social/tags/cybercriminals" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybercriminals</span></a> to engage in <a href="https://mastodon.hams.social/tags/identitytheft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>identitytheft</span></a>?</p>
ResearchBuzz: Firehose<p>Ars Technica: Mom horrified by Character.AI chatbots posing as son who died by suicide. “A mother suing Character.AI after her son died by suicide—allegedly manipulated by chatbots posing as adult lovers and therapists—was horrified when she recently discovered that the platform is allowing random chatbots to pose as her son.”</p><p><a href="https://rbfirehose.com/2025/03/21/ars-technica-mom-horrified-by-character-ai-chatbots-posing-as-son-who-died-by-suicide/" class="" rel="nofollow noopener noreferrer" target="_blank">https://rbfirehose.com/2025/03/21/ars-technica-mom-horrified-by-character-ai-chatbots-posing-as-son-who-died-by-suicide/</a></p>
Pyrzout :vm:<p>Scam Alert: FBI ‘Increasingly Seeing’ Malware Distributed In Document Converters – Source: www.techrepublic.com <a href="https://ciso2ciso.com/scam-alert-fbi-increasingly-seeing-malware-distributed-in-document-converters-source-www-techrepublic-com/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">ciso2ciso.com/scam-alert-fbi-i</span><span class="invisible">ncreasingly-seeing-malware-distributed-in-document-converters-source-www-techrepublic-com/</span></a> <a href="https://social.skynetcloud.site/tags/rssfeedpostgeneratorecho" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>rssfeedpostgeneratorecho</span></a> <a href="https://social.skynetcloud.site/tags/SecurityonTechRepublic" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SecurityonTechRepublic</span></a> <a href="https://social.skynetcloud.site/tags/SecurityTechRepublic" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SecurityTechRepublic</span></a> <a href="https://social.skynetcloud.site/tags/CyberSecurityNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberSecurityNews</span></a> <a href="https://social.skynetcloud.site/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cybersecurity</span></a> <a href="https://social.skynetcloud.site/tags/Identitytheft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Identitytheft</span></a> <a href="https://social.skynetcloud.site/tags/mp4converters" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>mp4converters</span></a> <a href="https://social.skynetcloud.site/tags/pdfconverters" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pdfconverters</span></a> <a href="https://social.skynetcloud.site/tags/AntiMalware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AntiMalware</span></a> <a href="https://social.skynetcloud.site/tags/ransomware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ransomware</span></a> <a href="https://social.skynetcloud.site/tags/Security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Security</span></a> <a href="https://social.skynetcloud.site/tags/Software" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Software</span></a> <a href="https://social.skynetcloud.site/tags/Malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Malware</span></a> <a href="https://social.skynetcloud.site/tags/fbi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>fbi</span></a></p>
Gina Intheburg 🇺🇦 🌻 🥥🌴<p>From <span class="h-card" translate="no"><a href="https://bird.makeup/users/4lisaguerrero" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>4lisaguerrero</span></a></span> on 🦋:</p><p>So immediately after <a href="https://mastodon.world/tags/DOGE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DOGE</span></a> gains access to all our <a href="https://mastodon.world/tags/SocialSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SocialSecurity</span></a> info, someone committed identity fraud by filling out a <a href="https://mastodon.world/tags/FEMA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FEMA</span></a> assistance application using my name, old address & Social Security number. I’ve never been the target of <a href="https://mastodon.world/tags/IdentityTheft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IdentityTheft</span></a> before. Coincidence?<br><a href="https://www.npr.org/2025/03/11/nx-s1-5305054/doge-elon-musk-security-data-information-privacy" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">npr.org/2025/03/11/nx-s1-53050</span><span class="invisible">54/doge-elon-musk-security-data-information-privacy</span></a><br>___<br>Nah. It's just the plan, Stan.</p>
The IT Blog<p><strong>Casino Data Jackpot – For Hackers: Merkur’s API Disaster</strong></p><p>A couple of days ago, I saw a Mastodon post from <a href="https://mastodon.social/@Lilith@chaos.social" rel="nofollow noopener noreferrer" target="_blank">Lilith Wittmann</a> in my timeline. She linked to an article on her <a href="https://lilithwittmann.medium.com/casinonutzer-der-merkur-gruppe-verlieren-nicht-nur-ihr-geld-sondern-auch-ihre-daten-ef6710184f7c" rel="nofollow noopener noreferrer" target="_blank">Medium page</a> detailing a catastrophic security failure at Merkur AG. You can find the original Mastodon post <a href="https://chaos.social/@Lilith/114161491881300469" rel="nofollow noopener noreferrer" target="_blank">here</a>.</p><blockquote><p>The casino company Merkur AG and its service providers have made almost all the data available in their casino systems publicly accessible. This includes payment data, gaming sessions, and copies of the ID cards of over <strong>one million</strong> players.</p><p>Lilith Wittmann’s <a href="https://lilithwittmann.medium.com/casinonutzer-der-merkur-gruppe-verlieren-nicht-nur-ihr-geld-sondern-auch-ihre-daten-ef6710184f7c" rel="nofollow noopener noreferrer" target="_blank">Medium Post (German)</a></p></blockquote><p></p><p>Oh wow. Losing data of <strong>a million customers</strong> is bad enough. To make things worse, they also integrated third-party services like Sumsub for Know Your Customer (KYC) checks. So, the leak also includes over<strong> 70,000 ID photos, selfies and proof of address</strong> from the KYC process.</p><p>A perfect setup for identity theft. What a mess!</p><p>All this was possible due to a <strong>unprotected GraphQL API</strong> endpoint.</p><p><strong>Let’s learn from this!</strong></p><p>For Merkur it is a massive damage. For us it is a lesson we can learn from: This breach is a good example of why <strong>securing APIs should be a top priority</strong>. Some simple steps that could have prevented this:</p><ul><li><strong>Never expose internal APIs to the public internet unless absolutely necessary.</strong> If an API must be public, it should have strict access controls, rate limits and maybe even IP-restrictions.</li><li><strong>Put sensitive systems in a private subnet.</strong> Even if an API is misconfigured, at least it won’t be wide open to the world.</li><li><strong>Use proper authentication, authorization, and role-based access control.</strong> A single user or role should never have unrestricted access to all sensitive data. Access should be limited to only the necessary fields for a given role.</li><li><strong>Regular security audits.</strong> If you’re handling sensitive data, you better have security experts regularly pentesting your systems.</li></ul><p>Obviously, a lot went wrong here. <strong>Let’s try to do better</strong> and avoid this kind of disaster in our own projects.</p><p><a href="https://www.locked.de/casino-data-jackpot-for-hackers-merkurs-api-disaster/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">locked.de/casino-data-jackpot-</span><span class="invisible">for-hackers-merkurs-api-disaster/</span></a><br><a rel="nofollow noopener noreferrer" class="hashtag u-tag u-category" href="https://www.locked.de/tag/hacking/" target="_blank">#hacking</a> <a rel="nofollow noopener noreferrer" class="hashtag u-tag u-category" href="https://www.locked.de/tag/identitytheft/" target="_blank">#IdentityTheft</a> <a rel="nofollow noopener noreferrer" class="hashtag u-tag u-category" href="https://www.locked.de/tag/merkur/" target="_blank">#Merkur</a> <a rel="nofollow noopener noreferrer" class="hashtag u-tag u-category" href="https://www.locked.de/tag/merkurbreach/" target="_blank">#MerkurBreach</a> <a rel="nofollow noopener noreferrer" class="hashtag u-tag u-category" href="https://www.locked.de/tag/privacy/" target="_blank">#Privacy</a></p>
nemo™ 🇺🇦<p>Optery helps remove your personal info from 615+ data broker sites, protecting you from identity theft, spam, and phishing. Get a free exposure report and strengthen your digital privacy! 🛡️💻 <a href="https://mas.to/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>privacy</span></a> <a href="https://mas.to/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://mas.to/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>databreach</span></a> <a href="https://mas.to/tags/identitytheft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>identitytheft</span></a> <a href="https://www.optery.com/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="">optery.com/</span><span class="invisible"></span></a></p>
Ian Barker<p>Increase in stolen identity records fuels cybercrime <a href="https://newsie.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberSecurity</span></a> <a href="https://newsie.social/tags/IdentityTheft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IdentityTheft</span></a></p><p><a href="https://betanews.com/2025/03/19/increase-in-stolen-identity-records-fuels-cybercrime/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">betanews.com/2025/03/19/increa</span><span class="invisible">se-in-stolen-identity-records-fuels-cybercrime/</span></a></p>
Neil J. Rubenking<p>Webroot Total Protection offers a broad range of competent security-related components, but some of them could use more work.</p><p><a href="https://www.pcmag.com/reviews/webroot-total-protection" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">pcmag.com/reviews/webroot-tota</span><span class="invisible">l-protection</span></a></p><p><a href="https://infosec.exchange/tags/webroot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>webroot</span></a> <a href="https://infosec.exchange/tags/pcmag" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pcmag</span></a> <a href="https://infosec.exchange/tags/antivirus" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>antivirus</span></a> <a href="https://infosec.exchange/tags/securitysuite" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>securitysuite</span></a> <a href="https://infosec.exchange/tags/identitytheft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>identitytheft</span></a> <a href="https://infosec.exchange/tags/backup" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>backup</span></a> <a href="https://infosec.exchange/tags/vpn" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>vpn</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
LoginDrag & drop to upload