Tag Archive for: facial

Week in review: Kali Linux gets on Linode, facial recognition defeated, Log4j exploitation


Week in review

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos:

Dealing with threats and preventing sensitive data loss
Recently, Normalyze, a data-first cloud security platform, came out of stealth with $22.2M in Series A funding. This was the perfect time to catch up with co-founder and CEO Amer Deeba. In this interview with Help Net Security, he talks about the path data security as well as visibility challenges.

Who are the best fraud fighters?
Seasoned fraud expert PJ Rohall has recently become the new Head of Fraud Strategy & Education at SEON. In this Help Net Security interview, he talks about how he entered the industry, about the evolving fraud landscape, and offers advice to other fraud fighters.

Linode + Kali Linux: Added security for cloud instances
Kali Linux, the popular open source Linux distribution specialized for penetration testing, ethical hacking and security auditing, can now be used by Linode customers.

Researchers defeat facial recognition systems with universal face mask
Can attackers create a face mask that would defeat modern facial recognition (FR) systems? A group of researchers from from Ben-Gurion University of the Negev and Tel Aviv University have proven that it can be done.

Microsoft fixes exploited zero-day in Windows CSRSS (CVE-2022-22047)
The July 2022 Patch Tuesday is upon us and has brought fixes for 84 CVEs in various Microsoft products, including an actively exploited zero-day: CVE-2022-22047, an elevation of privilege bug in Windows’ Client/Server Runtime Subsystem (CSRSS).

Phishers steal Office 365 users’ session cookies to bypass MFA, commit payment fraud
A massive phishing campaign has been targeting Office 365 (i.e., Microsoft 365) users in over 10,000 organizations since September 2021 and successfully bypassing multi-factor authentication (MFA) set up to protect the accounts.

PayPal-themed phishing kit allows complete identity theft
Sometimes phishers are just after your username and password, but other times they are after every scrap of sensitive information they can extract from you. To do that, they use tools like the phishing kit recently analyzed by Akamai researchers.

How to…

Source…

CBP Expands Facial Biometrics to Mobile, Alabama Cruise Ship Terminal


NEW ORLEANS, La. – U.S. Customs and Border Protection (CBP), in partnership with Carnival Cruise Line, expanded the use of facial biometrics into the debarkation process at the Port of Mobile, AL, becoming the latest seaport to modernize efforts to revolutionize cruise travel.

 “As we prepare for the increase in cruise travel around our nation’s ports, CBP is working closely with the cruise industry to make travel safer and more efficient, while also supporting travel recovery efforts,” said Steven Stavinoha, Director, Field Operations for CBP’s Gulf Coast Field Office. “The biometric facial comparison process adds an extra layer of security and streamlines travel into the United States by replacing the manual inspection of travel documents with a secure, touchless process.”

 When debarking the cruise vessel at a U.S. seaport, passengers will pause for a photo that will be compared to the traveler’s existing passport or visa photo in secure DHS systems to biometrically verify their identity. Upon an efficient match, passengers are allowed to proceed through inspections and exit the terminal. This innovative entry process further secures and enhances the customer experience while protecting the privacy of all travelers. The enhanced arrival process using facial biometrics verifies the traveler’s identity within two seconds and is more than 98% accurate.

U.S. travelers and select foreign nationals who are not required to provide biometrics and wish to opt out of the new biometric process can simply request a manual document check from a CBP Officer consistent with existing requirements for admission into the United States.

Already in use at major air and land ports of entry, facial biometrics in the cruise environment will strengthen CBP’s enforcement capabilities at several of the nation’s cruise ports while also enhancing the customer experience. Additionally, CBP and its cruise partners have expanded data sharing agreements to further strengthen security in cruise travel.

passenger approaches the biometric facial comparison machine while Carnival Cruise Line employee stands nearby
Passenger approaches the biometric facial comparison
machine while Carnival Cruise Line employee stands nearby

To date, facial biometric comparison technology is available at 13 seaports…

Source…

As Facebook moves to shut down facial recognition, online security experts emphasize internet safety – CIProud.com


TRICOUNTY PRESSER

News /

Veterans Voices: Fist bumps with a purpose at Tremont Grade School

News /

Low-income tenants welcomed into East Bluff Community Homes with ribbon

News /

WATCH: Tri-County health officials hold COVID-19 press conference

News /

Lawsuit against Unit 5 schools being transferred to McLean County court

News /

With community support, one Bloomington business is helping get warm winter gear into the hands of those in need through ‘The Giving Fence’

News /

Leaders in East Peoria want to add more trails to riverfront

News /

Amy McFarland announces run for 11th judicial circuit court judge position

News /

Rivian hitting the stock market soon

News /

CITYLINK ON THE MOVE

News /

As Facebook moves to shut down facial recognition, online security experts emphasize internet safety

News /

‘When I get out of homelessness, then I will be more steady on my feet:’ Salvation Army Pekin is more than a place to find shelter

News /

Source…

Facebook used facial recognition without consent 200,000 times, says South Korea’s data watchdog • The Register


Facebook, Netflix and Google have all received reprimands or fines, and an order to make corrective action, from South Korea’s government data protection watchdog, the Personal Information Protection Commission (PIPC).

The PIPC announced a privacy audit last year and has revealed that three companies – Facebook, Netflix and Google – were in violations of laws and had insufficient privacy protection.

Facebook alone was ordered to pay 6.46 billion won (US$5.5M) for creating and storing facial recognition templates of 200,000 local users without proper consent between April 2018 and September 2019.

Another 26 million won (US$22B) penalty was issued for illegally collecting social security numbers, not issuing notifications regarding personal information management changes, and other missteps.

Facebook has been ordered to destroy facial information collected without consent or obtain consent, and was prohibited from processing identity numbers without legal basis. It was also ordered to destroy collected data and disclose contents related to foreign migration of personal information. Zuck’s brainchild was then told to make it easier for users to check legal notices regarding personal information.

The fine is the second-largest ever issued by the organization, the largest ever also going to Facebook. In November 2020 the Social Network™ was fined 6.7 billion won (US$5.7M) for passing on personal data to other operators without user permission.

Netflix’s fine was a paltry $220 million won (US$188,000), with that sum imposed for collecting data from five million people without their consent, plus another 3.2 million won (US$2,700) for not disclosing international transfer of the data.

Google got off the easiest, with just a “recommendation” to improve its personal data handling processes and make legal notices more precise.

The PPIC…

Source…