Apple Readies Its App Tracking Transparency Pop-Up

New Chinese-speaking spy group targets governments in Vietnam and other Asian countries, Ransomware gangs want customers to pressure victims, New campaign targets LinkedIn users, more

Thank you, thank you to our premium subscribers. We are almost at the point that we cover our hosting and minor development expenses. Consider joining your peers today to help make Metacurity sustainable and gain access to our archives and premium content. Thank you.

During a conversation with Sway’s Kara Swisher, Apple CEO Tim Cook said that privacy is one of the top issues of the 21st Century and that “we’re in a crisis” in terms of privacy.

Because companies are going outside what Cook says are “reasonable rails” when it comes to privacy, he reluctantly has embraced regulation to redress privacy concerns. “For us, privacy is a basic human right. And it’s a right that other rights are built off of,” he said.

The stronger push on privacy has also led Apple to introduce privacy “nutrition labels” as well as the upcoming App Tracking Transparency pop-up the company will introduce in a few weeks that “basically prompts them to answer the question of, are they OK with being tracked or not,” Cook said. (Kara Swisher / The New York Times)

Related: iPhone HacksThe Verge, Phone Arena, 9to5MacAskWoodyAskWoodyHotHardware.com, WCCFtechiClarifiedMacRumorsiMoreTech Insider,  Pocket-lintiPhone in Canada BlogInvestor's Business DailyThe Loop9to5MacMashable, AppleInsiderMacStories, The Mac Observer

Cybersecurity company Kaspersky Labs said that a previously undocumented group of Chinese-speaking spies conducted a months-long political intelligence-gathering campaign to infect government agencies' computers in Vietnam and other Asian countries.

The group is similar to but more advanced than a Chinese-speaking group called Cycldek that has been around for eight years. (Sean Lyngaas / Cyberscoop)

Related: Dark Reading: Attacks/Breachesisssource.com, Securelist

A grand jury indicted a California resident Tassilo Heinrich who has been accused of stealing Shopify customer data on over a hundred merchants.

The indictment charges Heinrich with aggravated identity theft and conspiracy to commit wire fraud by allegedly working with two Shopify customer support agents to steal merchant and customer data from Shopify customers to gain a competitive edge and “take business away from those merchants.” (Zack Whittaker / TechCrunch

Related: DataBreaches.net, Slashdot

Share

Some ransomware gangs are pressuring victims’ customers and partners, warning them that their data will be leaked on the web if the victims don’t pay up.

In one recent example, the Cl0p ransomware gang sent a threatening message to a customer of RaceTrac Petroleum, an Atlanta company that operates more than 650 retail gasoline convenience stores in 12 southeastern states. (Brian Krebs / Krebs on Security)

An unnamed Dutchman from the city of Arnhem was sentenced in the Netherlands last week to 27 months in prison and a €10,000 (around $11,800) fine for breaking into 13,762 accounts at Dutch online stores.

The hacker used financial details obtained in the intrusions, known as account takeover (ATO) incidents, to buy luxury goods which he later shipped to his home address. (Catalin Cimpanu / The Record)

Researchers at cybersecurity firm eSentire's Threat Response Unit (TRU) said that a new spear-phishing campaign targets professionals on LinkedIn with weaponized job offers in an attempt to infect targets with a sophisticated backdoor trojan called "more_eggs."

The “more eggs” campaign is using the same modus operandi as a backdoor attributed to a malware-as-a-service (MaaS) provider called Golden Chickens, which has been deployed by various cybercrime gangs including. Cobalt, FIN6, and EvilNum. (Ravie Lakshmanan / The Hacker News)

Related: Infosecurity MagazineeSentire, HackReadSiliconAngle

Personal data of about 30,000 people who use the services of E2i (Employment and Employability Institute), the job and training arm of Singapore’s National Trades Union Congress (NTUC), may have been exposed after a malware attack on the mailbox of an employee at a third-party vendor.

The data affected may include names, NRIC, contact details, educational qualifications, and employment details. (Channel News Asia)

Related: The Straits Times Tech News

Microsoft Defender for Endpoint, the enterprise version of its Defender antivirus, now comes with support for Windows 10 on Arm devices.

Microsoft says that Arm devices are designed to take full advantage of the built-in protections available in Windows 10, such as encryption, data protection, and next-gen antivirus and antimalware capabilities. (Sergiu Gatlan / Bleeping Computer)

Related: Microsoft Malware Protection Center

Cyber threat early-warning intelligence start-up Cyble has raised $4 million in a seed financing round led by Blackbird Ventures and Spider Capital, with participation from Xoogler Ventures, Picus Capital, and Cathexis Ventures.

The funding follows Cyble’s graduation from Y Combinator, which accepted Cyble into its Winter 2021 (W21) cohort and provided pre-seed funding in January of this year. (Business Wire)

Related: Big News Network

Follow Us on Twitter

Controversial UK cybersecurity company Darktrack plans a £3 billion (around $4.2 billion) stock market listing on the London Stock Exchange as early as next week, lower than the £5 billion (around $7 billion) initially proposed given the recent disastrous debut of food delivery service Deliveroo.

Mike Lynch, the billionaire founder of software company Autonomy, who is battling extradition to the US, was the first shareholder in Darktrace through his investment vehicle, Invoke Capital. According to a recent Dutch court decision, Ralph Hamers, Darktrace’s new chief executive, should face an investigation into a money-laundering scandal at ING, his former employer. (Mark Kleinman / Sky News)

Related: Verdict, Morningstar, Tech.eu

UK-based digital services provider Logicalis has acquired a majority stake in Áudea, a cybersecurity, and regulatory compliance company, for an undisclosed amount.

Founded in Madrid, Áudea provides services to more than 200 clients across finance, consumer goods, commerce, security, education, and more. (Lisa Ardill / Silicon Republic)

Related: Global Security MagazineReleases feed from RealWire

Photo by Marija Zaric on Unsplash