Source: New York Times Magazine via Newser
https://www.newser.com/story/367874/after-243m-crypto-heist-a-crucial-mistake.html
It’s a story about two incredible crimes—the $243 million theft of cryptocurrency from a single person, and the brazen kidnapping of a wealthy couple in Connecticut. And as Mitch Moxley explains in a New York Times Magazine story, the crimes last year were connected, though it took awhile for authorities to figure that out. The cybertheft came first. Moxley explains how a group of young criminals conned a resident of DC—he was an early adopter of bitcoin— into surrendering his fortune by convincing him he was actually protecting it. But just as there are cyberthieves adept at this kind of thing, there are cyberdetectives adept at following the trail. One such sleuth obtained video said to be of the scammers celebrating their massive haul….
Source: Malwarebytes blog
https://www.malwarebytes.com/blog/news/2025/04/ai-is-getting-creepy-good-at-geo-guessing
AI is getting “creepy good” at geo-guessing. Posted: April 25, 2025
If you are worried about revealing your exact location—or if you maybe even fib about it at times—there are some good reasons to worry about what is visible in background photos, because Artificial Intelligence (AI) is getting very good at guessing where you are based on the smallest of clues. And that might even include audio clues, if given the right data.Geo guessing Our curiosity was triggered by this article in TechRadar claiming that ChatGPT o3 can geo-guess your location from almost any photo. So, we decided to do some tests and removed the metadata from a few selected photographs that I took myself and never published anywhere (for quality reasons, obviously).
Bird songs – So, modern AI tools can pick up visible clues. But then I had another idea—call it an epiphany if you will—which deserves a brief explanation. I use an app called Merlin Bird ID which is able to identify birds based on their singing. Some bird species are a lot more local than others…so I tried an experiment and offered both AI tools (ChatGPT and Perplexity) a list of bird song matches made from my Merlin Bird ID app. Here is the bird list, and what they tell us about where those birds are located…
Filed: https://www.malwarebytes.com/blog/category/privacy
Subject: 7 ways to lock down your phone’s security – before it’s too late
Source: ZDNET
https://www.zdnet.com/article/7-ways-to-lock-down-your-phones-security-before-its-too-late/
From the conclusion:
The techniques in this guide create layered defenses that significantly increase how hard it is for unauthorized actors to access your digital life. But this is not comprehensive – remember, security exists on a spectrum! Implement protections that work best with your life and fit your specific threat model. For most people, basic stuff like strong passwords, careful app management, and thoughtful social media practices are good digital hygiene. Those facing higher risks need to implement more comprehensive strategies, and of course, it’s important to remain flexible and curious.
Source: tech.co
https://tech.co/news/half-million-affected-breach
Personal information belonging to nearly half a million individuals is believed to have been compromised in a massive data breach at Kelly Benefits, a payroll and benefits solutions provider operating out of Maryland.The breach, which took place in December 2024, was revealed by the Maine Attorney General’s Office. In early April, it was originally reported that approximately 32,000 people had been affected. That number has now been dramatically revised, with the total estimate as high as 410,000.
In the above time period, cybercriminals gained access to the business’s computer systems, accessing and exfiltrating files containing “highly sensitive” customer information.
Tech Landscape Failing Basic Cybersecurity Duties – In 2025, data breaches have reached scarcely believable levels. Companies report extensive cyberattacks on a near-daily basis – the consequences of which are often severe. While the financial repercussions can be damaging, it is the long-term consequences that prove terminal for so many. Even if a company manages to shoulder the immediate penalties, its reputation is often irreparably tarnished.
…
Subject: Postal Service Data Sharing to Deport Immigrants
Source: EFF
https://www.bespacific.com/postal-service-data-sharing-to-deport-immigrants/
EFF: “The law enforcement arm of the U.S. Postal Service (USPS) recently joined a U.S. Department of Homeland Security (DHS) task force geared towards finding and deporting immigrants, according to a report from the Washington Post. Now, immigration officials want two sets of data from the U.S. Postal Inspection Service (USPIS). First, they want access to what the Post describes as the agency’s “broad surveillance systems, including Postal Service online account data, package- and mail-tracking information, credit card data and financial material and IP addresses.” Second, they want “mail covers,” meaning “photographs of the outside of envelopes and packages.” […]According to the USPS’ Privacy Policy: “The Postal Service collects personal information from you and from your transactions with us.” It states that this can include “your name, email, mailing and/or business address, phone numbers, or other information that identifies you personally.” If you visit the USPS’s website, they “automatically collect and store” your IP address, the date and time of your visit, the pages you visited, and more.
[…]
The USPS should not collect, store, disclose, or use our data except as strictly necessary to provide us the services we request. This is often called “data minimization.” Among other things, in the words of a seminal 1973 report from the U.S. government: “There must be a way for an individual to prevent information about him that was obtained for one purpose from being used or made available for other purposes without [their] consent.” Here, the USPS should not divert customer data, collected for the purpose of customer service, to the new purpose of surveilling immigrants…”
—
Abstracted from beSpacific
Copyright © 2024 beSpacific, All rights reserved.
Source: PC Mag
https://www.bespacific.com/using-ai-can-be-ethically-iffy-heres-how-to-do-it-right/
PC Mag: “Like it or not, artificial intelligence is here to stay. You’ve probably heard a lot of chatter about how it’s an incredible tool that can transform society and a malevolent force that steals work and is destined to put us all out of a job. The truth, of course, lies somewhere in between. As with any tool, the nature of AI depends on the people designing and using it.[…]
How do you leverage AI to simplify your life without wandering into morally ambiguous territory? Here are a few tips that we recommend…”
see also: https://www.pcmag.com/series/all-about-artificial-intelligence
filed: https://www.pcmag.com/categories/ai
—
Abstracted from beSpacific
Copyright © 2024 beSpacific, All rights reserved.
Subject: How to Make Your iPhone as Secure as Possible
Source: How to Geek
https://www.bespacific.com/how-to-make-your-iphone-as-secure-as-possible/
- Two-Factor Authentication
- iCloud Private Relay
- Advanced Data Protection
- Stolen Device Protection
- Lockdown Mode
- Other Key Habits to Improve Your iPhone Security
Summary: Two-factor authentication adds an extra layer of security to protect your iCloud account, while iCloud Private Relay safeguards your privacy when browsing online with Apple’s Safari browser.C onsider enabling Advanced Data Protection for additional encryption and use Stolen Device Protection to further lock your device to your biometrics. Keep your device up to date and avoid public Wi-Fi, in addition to using optional safeguards like Lockdown mode and VPNs.”
—
Abstracted from beSpacific
Copyright © 2024 beSpacific, All rights reserved.
Source: gHacks Tech News
https://www.ghacks.net/2025/05/09/u-s-lawmakers-express-concerns-over-u-k-push-for-apple-backdoor-in-encryption/
U.S. lawmakers have voiced concerns over the United Kingdom’s recent order to compel Apple to create a backdoor to its end-to-end encryption. In February 2025, Apple announced that it had disabled its Advanced Data Protection feature for iCloud users in the U.K.This was a result of a Technical Capability Notice (TCN) issued under the 2016 Investigatory Powers Act, which mandates that law enforcement be able to access user data, regardless of encryption. Apple has challenged the TCN in court, arguing that the requirement jeopardizes the privacy and security of millions. Instead of crafting a backdoor in iCloud, it opted to disable the iCloud feature to protect users worldwide. Despite the cessation of the Advanced Data Protection feature, Apple has assured users that their health data, passwords, iCloud messages, and transactions remain securely encrypted.
[…]
As TechRadar reports, a major cyberattack known as Salt Typhoon underscored the essential role reliable encryption plays in safeguarding personal data.