McDonald’s app users are being targeted by hackers who order more than $2,000 worth of meals and leave no trace.
The “My McD’s” app in Canada can be used to pre-order food and drink for collection, and stores credit card information for payments.
So far in 2019 there have been dozens of reports on Twitter, App Store reviews, and Reddit that the app is often the target of hackers.
McDonald’s says it is “aware” of the reports but is “confident in the security of the app.”
On some occasions, McDonald’s Canada has refused to refund fraudulent transactions and urged users to contact their banks for compensation…

https://www.businessinsider.com/mcdonalds-mymcds-app-users-swindled-thousands-canada-2019-4

While the world’s focused on the latest Avenger’s flick, an international team of scientists have potentially unlocked the super powers of another familiar Marvel character: Magneto.

Researchers from the Argonne National Laboratory, Oakland University in Michigan, and Fudan University in China have discovered a quantum-level exploit that has the potential to give engineers greater control over the magnetic properties of certain metals. The experimental observations were discovered through testing with the same kind of metals used for storing data in hard drive disks…

https://thenextweb.com/science/2019/04/26/quantum-breakthrough-could-lead-to-super-powered-hard-disk-drives/

Some bad news arrived late on Friday in the inboxes of users of Docker, the container platform beloved by developers:

On Thursday, April 25th, 2019, we discovered unauthorized access to a single Hub database storing a subset of non-financial user data. Upon discovery, we acted quickly to intervene and secure the site.

During a brief period of unauthorized access to a Docker Hub database, sensitive data from approximately 190,000 accounts may have been exposed (less than 5% of Hub users). Data includes usernames and hashed passwords for a small percentage of these users, as well as GitHub and Bitbucket tokens for Docker autobuilds…

https://www.grahamcluley.com/docker-security-breach-exposes-data-of-190000-users/

Microsoft has admitted that its Outlook.com security breach was worse than the company initially revealed. The software maker started notifying some Outlook.com users late on Friday night that a hacker was able to access accounts for months earlier this year. Microsoft’s notification revealed that hackers could have viewed account email addresses, folder names, and subject lines of emails, but in a separate notification to other affected users the company also admitted email contents could have been viewed…

https://www.theverge.com/2019/4/15/18311112/microsoft-outlook-web-email-hack-response-comment

Recently users have noticed that Google Chrome has started stating that it is “Managed by your organization” when they open the browser’s menu, which is a confusing for home users who are not part of any organization. It turns out that with the release of Chrome 73, the browser will now display this message whenever a group policy is configured for the browser…

https://www.bleepingcomputer.com/news/software/chrome-saying-its-managed-by-your-organization-may-indicate-malware/

Last Thanksgiving, while other people’s families were arguing about politics, my family and I managed to get into a fight over whether they should be paying more attention to the security of their computers and data. One insisted she doesn’t do any online banking; another pointed out that his email is incredibly boring; and, anyway, they pretty much all assume anyone who wanted to would be able to access everything anyway…

https://slate.com/technology/2017/02/everyone-needs-to-take-computer-security-seriously.html

Arizona Beverages, quick to the grocer’s shelf with its ubiquitous iced teas, has been slow to get much of its network running again after it discovered its backup system wasn’t properly configured to restore its systems in the wake of a targeted ransomware attack and was forced to spend a pretty penny to bring in outside help from #Cisco…

https://www.scmagazine.com/home/security-news/ransomware/arizona-beverages-ransomware-attack-exacerbated-by-unpatched-servers-poorly-configured-back-up-system/