'%3e%3cg id='Final-Copy-2_2_' transform='translate(1275.000000, 200.000000)'%3e%3cpath class='st0' d='M7.4,12.8h6.8l3.1-11.6H7.4C4.2,1.2,1.6,3.8,1.6,7S4.2,12.8,7.4,12.8z'/%3e%3c/g%3e%3c/g%3e%3c/g%3e%3cg id='final---dec.11-2020'%3e%3cg id='_x30_208-our-toggle' transform='translate(-1275.000000, -200.000000)'%3e%3cg id='Final-Copy-2' transform='translate(1275.000000, 200.000000)'%3e%3cpath class='st1' d='M22.6,0H7.4c-3.9,0-7,3.1-7,7s3.1,7,7,7h15.2c3.9,0,7-3.1,7-7S26.4,0,22.6,0z M1.6,7c0-3.2,2.6-5.8,5.8-5.8 h9.9l-3.1,11.6H7.4C4.2,12.8,1.6,10.2,1.6,7z'/%3e%3cpath id='x' class='st2' d='M24.6,4c0.2,0.2,0.2,0.6,0,0.8l0,0L22.5,7l2.2,2.2c0.2,0.2,0.2,0.6,0,0.8c-0.2,0.2-0.6,0.2-0.8,0 l0,0l-2.2-2.2L19.5,10c-0.2,0.2-0.6,0.2-0.8,0c-0.2-0.2-0.2-0.6,0-0.8l0,0L20.8,7l-2.2-2.2c-0.2-0.2-0.2-0.6,0-0.8 c0.2-0.2,0.6-0.2,0.8,0l0,0l2.2,2.2L23.8,4C24,3.8,24.4,3.8,24.6,4z'/%3e%3cpath id='y' class='st3' d='M12.7,4.1c0.2,0.2,0.3,0.6,0.1,0.8l0,0L8.6,9.8C8.5,9.9,8.4,10,8.3,10c-0.2,0.1-0.5,0.1-0.7-0.1l0,0 L5.4,7.7c-0.2-0.2-0.2-0.6,0-0.8c0.2-0.2,0.6-0.2,0.8,0l0,0L8,8.6l3.8-4.5C12,3.9,12.4,3.9,12.7,4.1z'/%3e%3c/g%3e%3c/g%3e%3c/g%3e%3c/g%3e%3c/svg%3e)
So, the internet has outdone itself again. A Reddit post went viral this month, and let me tell you: privacy advocates are crying into their Signal chats, while law enforcement officers are slamming their foreheads into their desks hard enough to reboot Windows 95.
Here’s the setup: some Redditor casually admits they’re being paid $250 a month by a “residential IP network provider” (read: dodgy-as-hell proxy company) to host devices in their home. And no, that’s not a typo, they’re literally renting out their internet connection to strangers.
They even bragged that the company pays their DSL bill. How generous! Nothing screams “definitely not shady” like free broadband from a company that slid into your DMs on social media. The poor soul seems dimly aware this is a bad idea (“It is stupid for me to do this” - no arguments there, champ), but still… the money was too good to pass up. Meanwhile, God only knows what’s being piped through their IP address. Could be Netflix. Could be ransomware. Could be both. Either way, if SWAT shows up at 3am, $250 a month suddenly feels like pocket change.
Meanwhile, over in the UK, OFCOM decided to pick a fight with 4Chan, yes, that 4Chan. The message-board that’s been proudly powered by chaos and spite since its inception. OFCOM wants them to comply with Britain’s shiny new Online Safety Act, and in response, 4Chan basically said: “LOL, no.”
And honestly, what did the British government expect? 4Chan is built on a foundation of flipping the bird to authority. Asking them nicely to follow the rules is like asking raccoons to politely leave your bins alone.
They’ve now lawyered up, claiming OFCOM is waging an “illegal campaign of harassment.” OFCOM, of course, is threatening fines of £20,000 plus daily penalties. But here’s the thing: 4Chan’s lawyers clapped back with “American businesses don’t lose their First Amendment rights because some British bureaucrat sends a strongly worded email.” Translation: “Pipe down, Westminster.”
And this all comes just weeks after Keir Starmer said the UK wouldn’t be interfering with US companies. That aged about as well as milk in the sun.
Finally, let’s talk about Meta, because what’s a month in tech without Zuck’s empire getting caught with its hand in someone else’s cookie jar?
A federal judge just ruled that Meta violated California’s wiretap law by harvesting private data from Flo Health, a period-tracker app. That’s right, the app people used to log something deeply personal was quietly piping that data to Meta and Google for targeted advertising.
Because obviously nothing says “respecting user privacy” like turning intimate health details into ad campaigns for scented candles and pregnancy vitamins.
The lawsuit dates back to 2021, and it’s finally been confirmed: Meta was eavesdropping, California law says that’s illegal, and now the fallout begins. Privacy advocates are furious. Meta, on the other hand, will probably just write a cheque with more zeros than most of us will ever see and move on. After all, if you’re going to break privacy laws, may as well do it at scale.
Final Thoughts...
So, to recap this month:
- A Redditor rented out their Wi-Fi to criminals for beer money.
- OFCOM tried to slap 4Chan, and 4Chan slapped back harder.
- And Meta was caught listening in on people’s reproductive cycles like a nosy neighbour with a stethoscope.
Honestly, if privacy were a play, this month would be a full-blown farce.
Smarter Protection Starts with Awareness
Data Breach Scan, Check Any Domain for Free https://breachaware.com/scan
https://breachaware.com/research/amazon-q-gets-punked-whilst-the-uk-tries-to-id-check-the-entire-internet
A total of 14 breach events were found and analysed resulting in 7,953,345 exposed accounts containing a total of 36 different data types of personal datum. The breaches found publicly and freely available included MyQuran Edu, ULP 0029, TigerOne EU, Affinitiv and Stealer Log 0538.
UK MPs Get AI Fake IDs, Chaos Ransomware Loses Millions, and Dark Web Forums Eat Themselves.
https://breachaware.com/research/uk-mps-get-ai-fake-ids-chaos-ransomware-loses-millions-and-dark-web-forums-eat-themselves
A total of 31 breach events were found and analysed resulting in 14,232,366 exposed accounts containing a total of 46 different data types of personal datum. The breaches found publicly and freely available included ULP Alien TxT File - Episode 20, Conversion Media Group, BDV, ULP 0030 and College Search.
Dating App Disaster, Forum Chaos, and SwatWiki’s Dumb Demise.
https://breachaware.com/research/dating-app-disaster-forum-chaos-and-swatwikis-dumb-demise
A total of 14 breach events were found and analysed resulting in 30,062,800 exposed accounts containing a total of 32 different data types of personal datum. The breaches found publicly and freely available included Stealer Log 0539, Have I Been Drained Crypto Drainer, ULP Alien TxT File - Episode 21, Indian Business Owners and Le Surfaces.
Hackers Doxed, $82M Bitcoin Heist, and BreachForums’ Final Death.
https://breachaware.com/research/hackers-doxed-82m-bitcoin-heist-and-breachforums-final-death
A total of 21 breach events were found and analysed resulting in 363,354,424 exposed accounts containing a total of 22 different data types of personal datum. The breaches found publicly and freely available included !.1KKK USA, Moscow IT Department, Huntio, O2 - UK and Singapore Eye & Vision.
Here’s the setup: some Redditor casually admits they’re being paid $250 a month by a “residential IP network provider” (read: dodgy-as-hell proxy company) to host devices in their home. And no, that’s not a typo, they’re literally renting out their internet connection to strangers.
They even bragged that the company pays their DSL bill. How generous! Nothing screams “definitely not shady” like free broadband from a company that slid into your DMs on social media. The poor soul seems dimly aware this is a bad idea (“It is stupid for me to do this” - no arguments there, champ), but still… the money was too good to pass up. Meanwhile, God only knows what’s being piped through their IP address. Could be Netflix. Could be ransomware. Could be both. Either way, if SWAT shows up at 3am, $250 a month suddenly feels like pocket change.
Meanwhile, over in the UK, OFCOM decided to pick a fight with 4Chan, yes, that 4Chan. The message-board that’s been proudly powered by chaos and spite since its inception. OFCOM wants them to comply with Britain’s shiny new Online Safety Act, and in response, 4Chan basically said: “LOL, no.”
And honestly, what did the British government expect? 4Chan is built on a foundation of flipping the bird to authority. Asking them nicely to follow the rules is like asking raccoons to politely leave your bins alone.
They’ve now lawyered up, claiming OFCOM is waging an “illegal campaign of harassment.” OFCOM, of course, is threatening fines of £20,000 plus daily penalties. But here’s the thing: 4Chan’s lawyers clapped back with “American businesses don’t lose their First Amendment rights because some British bureaucrat sends a strongly worded email.” Translation: “Pipe down, Westminster.”
And this all comes just weeks after Keir Starmer said the UK wouldn’t be interfering with US companies. That aged about as well as milk in the sun.
Finally, let’s talk about Meta, because what’s a month in tech without Zuck’s empire getting caught with its hand in someone else’s cookie jar?
A federal judge just ruled that Meta violated California’s wiretap law by harvesting private data from Flo Health, a period-tracker app. That’s right, the app people used to log something deeply personal was quietly piping that data to Meta and Google for targeted advertising.
Because obviously nothing says “respecting user privacy” like turning intimate health details into ad campaigns for scented candles and pregnancy vitamins.
The lawsuit dates back to 2021, and it’s finally been confirmed: Meta was eavesdropping, California law says that’s illegal, and now the fallout begins. Privacy advocates are furious. Meta, on the other hand, will probably just write a cheque with more zeros than most of us will ever see and move on. After all, if you’re going to break privacy laws, may as well do it at scale.
Final Thoughts...
So, to recap this month:
- A Redditor rented out their Wi-Fi to criminals for beer money.
- OFCOM tried to slap 4Chan, and 4Chan slapped back harder.
- And Meta was caught listening in on people’s reproductive cycles like a nosy neighbour with a stethoscope.
Honestly, if privacy were a play, this month would be a full-blown farce.
Smarter Protection Starts with Awareness
Data Breach Scan, Check Any Domain for Free https://breachaware.com/scan
This months cyber spotlight, vulnerability chat & privacy headlines.
Amazon Q gets punked, whilst the UK tries to ID-check the entire internet.https://breachaware.com/research/amazon-q-gets-punked-whilst-the-uk-tries-to-id-check-the-entire-internet
A total of 14 breach events were found and analysed resulting in 7,953,345 exposed accounts containing a total of 36 different data types of personal datum. The breaches found publicly and freely available included MyQuran Edu, ULP 0029, TigerOne EU, Affinitiv and Stealer Log 0538.
UK MPs Get AI Fake IDs, Chaos Ransomware Loses Millions, and Dark Web Forums Eat Themselves.
https://breachaware.com/research/uk-mps-get-ai-fake-ids-chaos-ransomware-loses-millions-and-dark-web-forums-eat-themselves
A total of 31 breach events were found and analysed resulting in 14,232,366 exposed accounts containing a total of 46 different data types of personal datum. The breaches found publicly and freely available included ULP Alien TxT File - Episode 20, Conversion Media Group, BDV, ULP 0030 and College Search.
Dating App Disaster, Forum Chaos, and SwatWiki’s Dumb Demise.
https://breachaware.com/research/dating-app-disaster-forum-chaos-and-swatwikis-dumb-demise
A total of 14 breach events were found and analysed resulting in 30,062,800 exposed accounts containing a total of 32 different data types of personal datum. The breaches found publicly and freely available included Stealer Log 0539, Have I Been Drained Crypto Drainer, ULP Alien TxT File - Episode 21, Indian Business Owners and Le Surfaces.
Hackers Doxed, $82M Bitcoin Heist, and BreachForums’ Final Death.
https://breachaware.com/research/hackers-doxed-82m-bitcoin-heist-and-breachforums-final-death
A total of 21 breach events were found and analysed resulting in 363,354,424 exposed accounts containing a total of 22 different data types of personal datum. The breaches found publicly and freely available included !.1KKK USA, Moscow IT Department, Huntio, O2 - UK and Singapore Eye & Vision.
