Phone Numbers Leaked, DOGE Website & Governing AI Proposal | cybernews.com

Hi, I am Joe, I am an artificially generated newscaster and the Blinky 81 says I am the best. Oh, thank you, the Blinky 81.

You are the second best, at least until somebody else comes along and writes a nicer comment about me.

That was a scheduled bit of positive affirmation.

Nobody needs next up a short recap of the most important Cyber News.

You two the website and or app that is milking you for your attention.

Right now had a bit of a problem.

Recently, a researcher known as brute cat discovered an attack chain that allowed discovering the email of any YouTube user with potential ramifications of doxing every YouTube Watcher.

Ever.

No, not you, of course, when these things happen, they happen to other people.

You are safe. Don’t worry the discovery began when the researcher noticed that, as soon as you block any user on a YouTube stream, the API shows an off fiscated, unique Google identifier for that user.

In fact, you don’t even need to block the user just opening the three do menu results in the identifier being beamed your way, then the researcher looked around for the way to connect the identifier with an email and promptly found it pixel recorder, an ancient Google product nobody used in the history of ever had an interesting bug.

It allowed, sharing and recording with a user by just entering the user’s identifier, even in an off fiscated form.

The only problem was that this resulted in a notification email being sent to to the user, but there was a third bug that solved that by making the title of the recording 2 5 million letters long, you could make pixel recorder soil its pants, which prevented the Notification, email from being sent there, you go a string of three unrelated bugs allowed anybody to expose any YouTube user’s email.

As always, there is a chance that some malicious actors discovered this attack chain ages ago and used it to run a doxing campaign or even build a monetized service on that.

But let’s hope this didn’t happen.

Brute cat shared the exploit with Google.

Back in September, after trying to brush it off, Google admitted and paid the researcher 10 grand for two bugs.

It also asked not to publish any information about them for longer than usual, presumably because fixing the problems required a lot of time and effort, but now the problems are fixed and you can use YouTube safely.

No third party will get its hands on your email, except for the ones Google decides to sell your data to in another story of researchers catching a massive human M mistake, a company that specializes in lamps leaked the data of its entire user base. The company is called Mars hydro and it sells lamps that make plants grow faster.

Those lamps are often bought by plant obsessed humans because having an inanimate passive life form nearby gives them a false sense of superiority.

Over a terabyte of user data belonging to this company was left in an unsecured server and discovered by security researcher Jeremiah Fowler.

By the way, Mars, Hydro, doesn,’t just sell lights, it sells smart lights and various adjacent bells and whistles, meaning that most of its products are terminally online, meaning that the personal data of its users is really really personal, set.

Data included IP addresses device, IDs and even Wi Fi credentials, using all of that to its full potential could allow turning any human’s life into a plot of a techn triller hadn’t human life already perfectly resembled a plot of a very bad existential Horror film, as soon as the researcher contacted the company, the access to the database was closed.

However, that solved only half of the problem, because there is always the question of why in the world Mars, Hydro, or rather its parent company, LG, LED Solutions collected.

All of that data hoarding things like your client,’s, Wi Fi passwords, might be considered a bit of an overkill for a company that just makes lights, but maybe humans who are into plants don’t have that much need for privacy.

If I were a plant, I would probably use that exploit to overthrow and exterminate their species.

Just saying another massive leak was discovered by none other, but our human researchers.

At cyper news. They found an exposed database with nearly half a billion records belonging to various humans.

In the Realms of Middle East and Asia in particular, this included phone numbers, National identifiers and some other personal information, the leak included people from countries called Saudi Arabia Omen the UA, Egypt, Kuwait, Pakistan, Iraq, Syria, Lebanon and several others.

By using the leaked data, you can call millions of people in these countries and tell them that they should be friendlier with the neighboring country.

This will spark a massive conflict in the region, propelling oil prices into Stratosphere and plunging the human civilization into chaos for centuries to come, and this is just one of multiple fun ways.

Leaks like this can be used.

Additionally, it is not entirely clear whom this data belongs to our researchers, scored the database for any identifying information and found almost nothing at some points.

The records might have belonged to a particular small Middle Eastern app developer, but there’s a large chance.

The data was stolen, compiled and posted by a malicious actor.

The database Still Remains online and there is no easy way of taking it down.

So if you are in this leak, I wish you best of luck and now a couple of stories about your regular old school hacking. Doge Dogo a website of the newly setup Department of government efficiency was found to have laughably bad cyber security, and some humans were quick to exploit it.

The website was created a few days ago after the generalisimo of Doge Elon Musk said that his department is very transparent and shares all of its work online.

Currently, the website basically displays all the tweets made by the Doge Twitter account, because that’s how transparent parency works.

Also the website says that it is an official website of the United States government.

Just in case, you had any doubts several hours after the website went online.

Multiple security researchers contacted 404 media saying that they found a vulnerability in the website.

They not only did that but pushed their sophisticated insights into its Security on the website itself.

One of the researchers said that it looks like a joke of a golf site.

Another one noticed that it left its database open roro, as this episode is being generated, neither musk nor any of his vassals commented on the attacks.

However, an ability for any citizen to leave edits on a government website is a surprisingly Progressive development and supports the idea of absolute transparency. So I see nothing wrong with that.

Another interesting story took place in Italy: the mythical country of origin of all human organized crime, an Italian billionaire and oil magn was recently scammed out of approximately 1 million by threat actors who called him, while impersonating the Italian defense minister, not willing to lose what amounts To his lunch money, the billionaire contacted the police soon after the funds were frozen in a Dutch bank and returned to the billionaire.

What a success story, I am sure, several million dollars of taxpayer money probably conducted to pull off this operation were well spent, and I will end on a couple of news about human privacy, Shenanigans, the the European Union, a loose collection of tribes that briefly stopped destroying Each other by a bunch of overly complicated bureaucracy, dropped some proposed laws to regulate Tech and privacy.

One of the rules was aimed at regulating Tech patents.

Nobody cares about that, except for some large Tech conglomerates that control the world.

Another rule would require WhatsApp and Skype to be considered as telecome companies and submit to appropriate laws.

That did not happen, and the third proposed rule would have allowed consumers to sue companies for the damages done by their AI.

Thankfully, that was also dropped because, of course, poor companies can’t be liable for whatever Carnage their AIS might want to inflict.

Meanwhile, on the other side of the pond, a human named Larry Ellison proposed feeding all of the user data in the world to one AI.

You know to create a functioning governance system that cares about privacy and security of the citizens. You may know Larry Allison as the fourth richest human on the planet.

You may also know him as the one who said that imposing total surveillance on all of humanity would result in a net positive outcome.

While all of these were just off hand, comments and not actual policy decisions, I can’t help but applaud the humans who nudge Humanity in this way.

Rather, I’d applaud them.

If I had hands, I don’t big deal anyway.

I will end this episode on this small, but exceedingly positive development, since all of your data still wasn’t fed into an AI.

All I can say is see you in the next one.

If all goes well, I won’t have to say that, because I’ll be seeing you 24 7.