On this Bottom Line I.T. with Mike Maddox and Erik Jacobsen talk about the latest in tech news. Including Amazon's home robot, Advanced Hackers Infect X-Ray Machines In Healthcare Espionage, and more Tech News.
Amazon is reportedly working on a home robot
For Amazon’s latest hardware trick, the company has apparently been working on a home robot under the codename, “Vesta.” That nugget comes via Bloomberg sources, who report that the online retail giant expects to start trialing the device in employee homes this year, with plans to launch it to consumers as early as 2019.
Researchers presenting at RSA 2018 on Wednesday disclosed how attackers in this scenario can gain persistent remote control over plugged-in devices, even after they are disconnected, by abusing a weakness in iTunes Wi-Fi sync, a feature that allows users to sync up iTunes content and data between Apple devices.
The only action required on the part of the victim is agreeing to "trust" the connected device when responding to an Apple security notification acknowledging the presence of an unknown machine. The victim does not even have to enable the iTunes Wi-Fi sync feature, as this functionality can instead be activated by malware installed on the boobytrapped computer or hardware device.
Microsoft: Tech support scams a 'growing global problem'
Tech support scams by email, fake websites and error warnings, malware and unsolicited phone calls are an effective way to trick people into giving up personal information. And it's only getting worse
Advanced Hackers Infect X-Ray Machines In Healthcare Espionage
The hacker group, dubbed Orangeworm, is mainly targeting American healthcare organizations, though there are a number of victims worldwide, including in Asia and Europe. But rather than do anything destructive, Orangeworm is likely using leverage on those medical devices - designed to process and view images from X-Ray and MRI machines
Thousands of Android apps may be illegally tracking kids
Thousands of free, popular children's apps available on the Google Play Store could be violating child privacy laws, according to a new, large-scale study, highlighting growing criticism of Silicon Valley's data collection efforts.
Segment 6 – Bottom Line Security
Transcription Service Leaked Medical Records
On Friday, KrebsOnSecurity learned that the portion of MEDantex’s site which was supposed to be a password-protected portal physicians could use to upload audio-recorded notes about their patients was instead completely open to the Internet.
What’s more, numerous online tools intended for use by MEDantex employees were exposed to anyone with a Web browser, including pages that allowed visitors to add or delete users, and to search for patient records by physician or patient name. No authentication was required to access any of these pages.