Monday, November 30, 2015

Data of thousands kids and their parents was stolen

Personal data of 5 million of parents and more than 200.000 kids, with an average age of 5 years, would have been stolen from the systems of the Chinese corporation Vtech, world leader in the selling of electronic toys for childhood and preschool. The attack would have been easy, given the non existent security measures by the company. We'll talk about a VPN error which seems serious although isn't to much clear, about the CyberCamp congress celebrated the past weekend in Madrid and we'll recommended an interesting article about how the biggest companies of cybereconomy avoid taxes.

5 millions of emails with their corresponding passwords weren't encrypted and protected in any way. Secret questions were not either, of course. Names of the parents easily linked with names of the children, whose homes addresses were saved too. Now the "bad guys" can know Mary is 9 years old, where she lives, what's the name of her pet and who are her parents. The company didn't know the existence of SSL and they have taken 15 days to give an answer: "Luckily they haven't taken financial information". Sorry for the expression but this is pathetic.

Failure in VPN

We change  of topic radically: the provider of virtual private networks (VPN) Perfect Privacy ensures they have found a vulnerability, which they called "port failure" and would affect to VPNs based in IPSec and PPTP protocols or would use the OpenVPN client. All the providers who offer service of reshipment ports would be affected according to the company. Although with the information we have isn't clear to whom it affects concretely, we recommend to take a look.

Goodbye Cybercamp

This weekend Madrid has lived an authentic orgy of cybersecurity called CyberCamp. The best Spanish experts have offered chats and workshops full of audience. It's very difficult to pick a talk, given the great level of the convention, but we've seen it has been recommended on Twitter the chat of one of our greatest hackers, Rubén Santamarta, specialist on reverse-engineer, whom we interviewed recently. The talk is called "21 days", because it's the time the libraries let you borrow a book.

Tax evasion

We finish, as always we can, with a text for reflection. In this case it´s an article explaining how easy is the tax evasion for the biggest companies of the new economy like Apple, Amazon or Microsoft. And of course they exploit it. What redirects to the question: If the e-commerce does not pay taxes, what will happen in the future with the states which live from them?

This was our first post of the week, with a little of salt and pepper. We wish our readers a good Monday.


Post a Comment