Bank Of America Face Data Breach in PPP Application Process.

 

Bank Of America Face Data Breach  in PPP Application Process.

Bank Of America Face Data Breach  in PPP Application Process.

The Worlds Second-Largest Bank that is Bank Of America in the U.S , Confirmed this week that a possible data breach may have affected small numbers of clients who have applied for the Paycheck Protection Program (PPP). For the people who have no  idea about what is (PPP) is a government initiative that was launched on April 3,2020 to provide economic relief to small business and other entities that have been adversely impacted by the covid-19 pandemic.   

BofA said that the breach  was occurred on 22nd April after loan application of some clients were uploaded to the Small Business Administration(SBA) test Platform. The limited access platform allowed lenders to PPP submission before the second round began.

Due to the breach other SBA-authorized lenders, as well as their vendors were able to view some private data of applicants, including their business tax identification number, business address owner name social security number, address phone number and email address.

Bank Of America Face Data Breach  in PPP Application Process.

The bank noticed that the data was not visible to other business clients who is applying for the loans or to the public anytime. Additionally it said the process did not affect the actual submission PPP loan application data to the SBA test application platform on april 22.

Bank advised the customers to review their monthly accounts statement thoroughly the report any suspicious activity to bank officials.

BofA also says that it is working closely with the US Treasury and SBA to process over 305,000 PPP loan application with the SBA, providing over $25 billion in Financial relief for small business in the United States.  

Microsoft is Replacing MSN Journalist With AI Robots.

 

Microsoft is Replacing MSN Journalist With AI Robots.

Microsoft a is Planning to replace dozens of Journalist With Artificial Intelligence (AI). Microsoft is to replace dozens of journalist on its MSN website and use automated system to select news stories, US and UK media report. The curating stories from news organisation and selection of headlines and pictures for the MSN site is currently done by Journalist.

What Is MSN ?

https://www.msn.com/en-in

MSN is Known as Microsoft Network  collection of internet services and apps for windows and mobile devices provided by the Microsoft. It is Network it Include web-based program and services offered by the Microsoft Corporation. MSN Offer a range of services including news, Search engines, user-driven forums, instant messaging, e-mail and services to connect to the internet Microsoft Windows users are able to synchronize to their computer system with online services offered as a method of centrally organizing and managing tasks. 

Microsoft is now moving away from human-created content content to AI in recent months. It has also been encouraging publisher and journalist to make use of AI.

Artificial Intelligence Replacing Humans  

Microsoft employee said , "I Spend all my time reading about how automation and AI is going to take all our Jobs, and here I am - AI has taken my job"

For Those people who are fired, It is going tough time now since the industry across the globe has been dealing with extensive job cuts. PA media itself has been facing difficulties. The company had to furlough some staff and ask other to take cuts.

Microsoft is one of the many tech companies experimenting with AI journalism to cut cost. Another tech giant is Google who to has invested in robots journalist project to understand how might work.

Official Website Of Microsoft Network : 

>>  https://www.msn.com/en-in

An App Named "Remove China App" got Over 1 Million Download in 2 Weeks.

An App Named "Remove China App" got Over 1 Million Download in 2 Weeks.

A Jaipur based tech firm has developed an app called "Remove china App" in India and the app has been downloaded more than 1 million download on the Google Play store just in two weeks after it's launch.

HIGHLIGHT:

• The App Has Become Popular On The Google Play Store.
• The Remove China App has been Rated 4.8 Google Play Store.
• This App Claims to Identify and Delete all the Chinese apps has Crossed 1 Million Download On Google Play Store.

The "Remove China App' was launched on 17 may, 2020 it was developed by One Touch Applabs Which is a Jaipur based software firm. This is one of the freeware. This app is freely available on Google Play store as well as it is ranking on number 2 on the play store in the list of top free apps. This App has  an amazing ranking on the Google play store it has 4.8 rating out of 5 and has also received over 1,17,000 users at the time of writing.

 As per the Developer of the App it has been developed for the educational purpose only to identify the country of origin of a certain application. we do not promote or force people to uninstall any application. Detecting the country of origin is based on the market research but we do not guarantee for any correct/wrong information, so users should act at their own will, "the app description reads.

How To Download & Use "Remove China App" ?

How to Download & Use "Remove China App"

• Download " Remove China App" From Google PlayStore.
• Open Downloaded App and Click on "Scan Now".
• The app will now Scan and Look For any Chinese Apps on Your Device.
• Then It Will list all the Chinese apps on your Device .
• Click On The Delete Button Next to the App Name to Remove it.

Currently "Remove China App" is available only for Android phones and not for IOS devices such as iPhones and iPads.

Website Of Austin City Took Down By The Anonymous Hackers.

 

Website Of Austin City Took Down By The Anonymous Hackers.

Website Of Austin City Took Down By The Anonymous Hackers.

The City of Austin's Website went offline on Thursday Morning. A group of Anonymous Hackers are taking the credit for Interrupting the city of Austin's Website.


Then  Later Hacker said that it was the protest against the city of Austin Police Department. The Hacker group name was anonymous they were one who took the city website down the name of website was austintexas.gov. In morning it appeared to just impact the user-facing web pages. The outages were intermittent throughout the morning, Specially for austintexas.gov .

The Anonymous hacker tweeted at 4:46 a.m taking the credit for this and again at 5:45 a.m saying @Austin_Police you should have expected us! and included hashtags regarding the murder of George Floyd. They Also Mentioned Austin Police Shooting And Critically injuring 20-Year old Justin Howell.

The 5:45 a.m tweet also said "more regret are coming ".

The Austin Police Department on Thursday morning they said that their system are working perfectly as it was expected.  Clearly hackers took down the website as a protest against the police department and show their support to the protesters.

Website Of Austin City Took Down By The Anonymous Hackers.

At the Time of Writing Article, The Website of city of Austin website Texas is still not working .  


Website Link
>> http://austintexas.gov/

New CET Technology added in Intel CPU's to Protect From Malware Attack.

 

New CET Technology added in Intel CPU's to Protect From Malware Attack.

New CET Technology added in Intel CPU's to Protect From Malware Attack.

A Big giant company Intel features deals with 'control flow' in which tasks are executed in the CPU, it is used to prevent malware modifying the control flow of other apps.

Intel has been working on CET, Which stands for Control-flow Enforcement Technology, since 2016 when when it was first published the first version of the CET Specification. As Its name Suggest CET deals with control flow a technical term used to describe in order in which operation are executed inside the CPU.

The Malware runs on device can use later in other apps to hijack their control flow and insert its malicious code to run in the context of another app. On Intel's future Tiger lake mobile CPU's CET will protect the control flow via two new security new mechanism namely shadow stack and indirect branch tracking. This new security feature also offers software developers two key capabilities to help defend against control flow hijacking malware : Indirect Branch Tracking (IBT) and Shadow Stack (SS).

As an new feature in Windows 10, Microsoft has worked with Intel to offer hardware-enforced stack protection built into windows 10 to enforce code integrity as well as terminate any malicious code. Intel Points to TrendMicro's Zero Day Vulnerability report indicate that 63.2% of the 1,097 Vulnerabilities from 2019 to today were memory safety related.  

Mainly These type of Malware basically target Operating System, Browser, readers and many other application. It takes deep hardware integration at the foundation to deliver effective security features with minimal performance impact, Intel Said.

 

DigiLocker Vulnerability Let Hackers Access Over 3.8 Crore Accounts Without Password

DigiLocker Vulnerability Let Hackers Access Over 3.8 Crore Accounts Without Password

DigiLocker, an online service from the government that is used to to store the document of an individual digitally, than service was found an authentication flaw which put the data of crores of users at risk. The Vulnerability was discovered by a researcher last month and which is existed in sign-in process of the service. This flaw can bypass the two-factor authentication and access sensitive personal information. The government has announced the flaw has been fixed.

HIGHLIGHTS:

• DigiLocker was found to have a flaw its authentication mechanism.
• DigiLocker team was told about the flaw last month.
• It allowed anyone to gain access to user account. 

For the people who are unaware about the DigiLocker so this is the online services provided by the ministry of Electronics and IT (Meity), Government of India under its Digital India Initiative this services provide the cloud storage to every Aadhaar holder to access authentic document such as driving license academic mark sheet in digital format from the original issuers of these certificate.

It provide 1 GB of storage space to each  account holder where user can store their scanned documents.

DigiLocker Vulnerability Let Hackers Access Over 3.8 Crore Accounts Without Password

The researcher found that the mobile Digilocker app uses a 4-digit PIN to implement an additional level of security. It was able to modify the API calls to authentic the PIN by associating the PIN to another user and access to the victim's Account. Because of Poor Mechanism the API is Possible to exploit them to reset the PIN Linked to a random user using Its UUID.

On analysis it was found that the Vulnerability had enter in the code with the recent addition of some new features. The team assured that data, database, storage, or encryption was not compromised due to this.

Official Wesbite :

>> https://digilocker.gov.in/