My Friend Cayla Doll, Other Toys, Hackers’ Delight and Parents’ Nightmare

If your child, or someone you know, received a My Friend Cayla doll, a Furby Connect doll, a Q50 children’s smartwatch, or a Sphero BB-8 droid (or quite likely one of a number of other toys or devices aimed at children, and that connect to the Internet via Bluetooth), that device – and thus the child who plays with it or uses it – is at risk of being hacked, personal data stolen, and even a hacker talking to the child, all because of unsecure Bluetooth connections.

Major Vulnerability in Security Protocol for Most Wifi Routers and IoT Devices Revealed, Codename: KRACK

A newly announced exploitable security weakness in the WPA2 protocol is spelling trouble for most Internet wi-fi routers, including home routers, and Internet of Things (IoT) devices. The KRACK (Key Reinstallation Attacks) vulnerability in WPA2 has the potential for such widespread security incidents (because WPA2 is deployed nearly everywhere, and because this is not OS-specific, but attacks the router) that the revealing of it was coordinated among the researchers who have discovered it.

Adult Friend Finders, Cams.com and Penthouse Accounts Among Massive Hack and Data Leak

Those of you who breathed a sigh of relief over the hacking of the Ashley Madison adult cheaters site because instead you are on one of the Friend Finder sex hookup sites, such as Adult Friend Finder (AdultFriendFinder.com) – guess what? It turns out that last month Friend Finder Networks, parent company of Adult Friend Finder and other associated sites such as Penthouse.com, Cams.com, iCams.com, and Stripshow.com – totaling over 412 million accounts – was hacked, exposing email addresses, passwords, and IP addresses – everything your spouse or significant other needs to nail you nailing someone else.

Massive Internet Outage Emanating from East Coast Due to DDOS Attack – List of Sites Affected and Workaround

This morning many large, widely used Internet sites, including Twitter, Spotify, GitHub, Etsy, Vox, Paypal, Starbucks, Airbnb, Netflix, and Reddit, just to name a few, were taken down and offline owing to a massive distributed denial of service (DDoS) against DNS provider Dyn. Below is a list of all of the sites that we know have been affected – and may still be being affected – by the Dyn DDoS outage. Also, until it’s all fixed, here is a workaround. [UPDATE: It has been confirmed that this was the result of hackers taking advantage of unsecured Internet of Things devices, probably using the Mirai malware.]

The Truth about the Arizona Arrest of Someone Wearing an Anonymous Mask

Jonathan McRae was arrested while wearing an Anonymous mask during a public hearing regarding election and voting issues in Maricopa county, Arizona. Note that we did not say that he was arrested for wearing the Anonymous mask, but rather while wearing the Anonymous (Guy Fawkes) mask. And, in fact, the mask wasn’t even covering his face (he had it up on his head – see the below video link).

ISIS Calls Anonymous ‘Idiots’ as Anonymous Declares War on ISIS

The hacker group known as Anonymous has declared cyber war on ISIS (the Islamic State, which also goes by ISIL and Daesh). While Anonymous has actually stated this previously, they have stepped up their game, and their public announcements of this war on ISIS, following last Friday’s attacks in Paris. In response to the announcement, ISIS released their own statement, calling Anonymous “idiots”.

Update on Ashley Madison Hack and Data Dump

As we told our readers last month, the ‘have an affair and cheat on your spouse’ website Ashley Madison was hacked, and information on their “37,765,000 anonymous users” was grabbed by the hackers, who call themselves The Impact Team. Now the Impact Team has dumped and revealed all of the data online, and many people are worrying “Is my email address in the Ashley Madison data?”