Your credit card has a 16-digit number on the front, plus an expiration date, and another three-digit code on the back. We all know in a vague way that the code on the back (also known as the “CVC” or “CVV”) has something to do with making transactions safer or reducing fraud, but other than that we don’t give it much thought — and while we might expect to have to share that number when shopping online, we certainly don’t expect to be asked to read it out loud when making an in-person purchase at a crowded coffee shop. [More]
A year after four former CVS security workers filed a federal lawsuit against the company alleging their supervisors ordered them to keep an eye on minority shoppers at some New York City stores, another former “market investigator” in Brooklyn has levied similar allegations against the pharmacy chain in a new class-action lawsuit. [More]
We know that the above email couldn’t be real for a few reasons: Consumerist doesn’t have our own payroll department, and Olivia is a cat. Yet there’s a new variation of the now-classic CEO scam, where someone impersonates your boss over email and requests a massive wire transfer. In this version, the boss impersonator does exactly what Fake Meg does above: they request a file of employee W-2 forms enabling them to commit identity theft, including filing fraudulent tax returns. [More]
It can surely be convenient to plug a dongle into your computer’s USB port and use a mouse or keyboard without the hassle of wires everywhere, but according to a new report from an Internet of Things security company, many wireless keyboards and mice are vulnerable to hackers. And once an attacker has access to those peripherals, they could easily download malware or steal information from your devices. [More]
Back in January, Wendy’s confirmed that it was looking into a data breach, adding later that it had found malicious software designed to steal customer information on computers that operate its payment processing system. As one might imagine, that didn’t go over well with some customers: a new class action claims the fast food chain was negligent in exposing its customers’ credit and debit card information to attackers. [More]
While Instagram may not have endured the same high-profile, embarrassing hacks that Twitter experienced in the past, the photo-sharing site is taking a page from the social media service — and other tech, networking, and retail companies — by enabling two-factor authentication for user accounts. [More]
A solid 25 years into the all-digital era, email continues to evolve. So this week, one of the world’s biggest providers is adding a few small features to help protect consumers.
We get it. Maybe you revived your childhood obsession with Star Wars. But don’t extend that fandom to your password, or you could end up welcoming in… the dark side. And by that, we mean anyone who happens to look at the list of 2015’s Worst Passwords. [More]
Here’s some depressing news for your morning: even if you set up your home network yourself and followed all of the best practices for doing so, it’s probably got some big fat vulnerabilities in it.
If you’ve been putting off your final farewells to Internet Explorer, it’s time to stop procrastinating: Microsoft is ending support for IE versions 8, 9, and 10, effectively sending the browser to that Internet pasture in the sky, where its friends Netscape Navigator, Mosaic, and other tech dinosaurs are waiting. [More]
While it’s normal for travelers to undergo additional screening procedures from the Transportation Security Administration when there could be something amiss, the father of a 10-year-old girl says she was made uncomfortable by a two-minute pat-down after she left a juice pouch in her carry-on.
There’s a good chance you’ve been waiting (patiently) in the airport security line, preparing to take off your shoes, your belt, remove your laptop, and place everything on the belt, only to see an airport employee breezily walk through the side gate with a quick flick of their badge. That scenario will likely be less and less frequent around the country as the Transportation Security Administration plans to increase random checks of airport and airline employees. [More]
The recent breach of popular children’s electric toy maker VTech compromised the personal information of nearly five million parents and children, but a new report claims the hack exposed even more sensitive information: photos and chat logs between children and their parents. [More]
Let’s kick off the holiday shopping season with news of a data breach that may involve some toys you’ll be wrapping in the coming weeks. Popular children’s electric toy maker VTech has announced that customer information fell into the wrong hands earlier this month. [More]
That big fat “Superfish”-style security hole in Dell laptops that we told you about yesterday? Turns out, it’s not alone. There’s another basically just like it on Dell laptops, too. ZDNet has instructions for how to remove these troublesome certificates from your laptop if it has them. [ZDNet]
If you found Amazon has force-reset your account password, you aren’t alone: according to a new report, many customers have reported that the e-commerce giant emailed them saying their password had been changed, citing security concerns that the information may be exposed to outsiders.