Jay gets an email of a scam that says it has his login information and knows where he's been online. It even tells him his password. And unless he gives them $800 in bitcoin, they'll expose him. Leo says it's called ransomware. Leo says it's probably from a data breach. Check out HaveIBeenPwned.com. And read this article on Krebs On Security - https://krebsonsecurity.com/2018/07/sextortion-scam-uses-recipients-hack.... It's bogus. You can ignore it.
Bloomberg published a story that China's PRC had installed a tiny chip the size of a grain of rice on all Elemental SuperMicro Motherboard, giving them access to a treasure trove of corporation and national security secrets. These boards are used widely in corporations and even the Department of Defense. Leo says the article was well researched, well sourced, but the day after it was published, everyone, including corporations where 17 unidentified sources worked, have denied it. Even the US Department of Homeland security and the UK CyberSecurity Ministry.
Tom's wife hasn't been able to log into Facebook since last Friday. Leo says that last Friday Facebook logged over 90 million people out of their accounts due to a hack. Many were deactivated until they can prove it's their account. And with over 90 million compromised accounts, it could take awhile. When her account is reactivated, she will have to re-login manually, turn on 2 factor authentication, and it would be a good idea to change her password.
According to Bloomberg, China added a tiny chip, about the size of a grain of rice, to network motherboards that would allow China to Spy on corporations. The chip was discovered by Amazon Security, which notified federal authorities. The servers were created by Chinese company Elemental, and are on everything from network business servers to NAVY WARSHIPS. Investigators have discovered that the chips were installed by the PRC at the manufacturing plant. But here's the twist ... everyone is now denying it.
Facebook reported this week that 50-90 million user accounts were hacked or compromised through three bugs in their interface that would allow a hacker to bypass password challenges through a stolen access token, video downloader access. Facebook says they have fixed the bug and made access tokens unusable for the 90 million compromised accounts. So if you had to re-log in this week, chances are that your account was compromised. Leo also says this is a good time to change your password and turn on 2 Factor Authentication in your Facebook settings.
Linda thinks her email accounts on Google and Yahoo have been hacked. She tried to log in, and it says "account no longer exists." What can she do? Rich says she may or may not have luck recovering it because Google has billions of accounts, and there's no deal tech support. Here's a good place to start to recover her account: https://support.google.com/accounts/answer/7682439?hl=en.
Mike's personal laptop was hacked by someone at work. He also believes that person is stalking him. Leo says that from a technological point of view, it would be wise to wipe the PC completely and reinstall Windows. But he'd also recommend contacting the police.
Karen's computer got taken over by a scammer who convinced her that he was from AOL when she was having trouble with her account. Leo says that gaining control of her computer remotely likely gave him that control and the only thing she can do is backup her data, format her hard drive, and reinstall windows from a known, good source. If one needs help from AOL, contact them directly here - https://help.aol.com/products/new-aol-desktop
There's a new attack that has been affecting ATMs around the world, and it's called "Jackpotting." It causes ATMs to dispense all of its cash. Hackers are using endoscopes to gain access to the interior of an ATM in order to connect to it and hack into the ATM's Windows XP operating system. Then, the once the malware is installed, a remote command is given to spew out 40 bills every 23 seconds.
Brad accidentally downloaded some malware, but he can't find it to remove it. Leo says downloading a file is only half the equation. He then would have to run it. Since he can't find it, even in his download log, it's likely it was a failed download. On top of that, Brad runs a Mac, so he's even more secure than Windows. But he should always make sure he keeps his computer updated, just in case.