Twitter says an attacker used its API to match usernames to phone numbers | ZDNet

xxx

In a statement published today, Twitter disclosed a security incident during which an unknown attacker exploited the company’s official API (Application Programming Interface) to match public usernames with users’ phone numbers.

Twitter said the attack took place on December 24, 2019, and the attacker used a large network of fake accounts to exploit its API.

From Twitter says an attacker used its API to match usernames to phone numbers | ZDNet:

xxx

Counterfeit Food – alexdanco.com

xxx

Pim Techamuanvivit, the owner and chef of a few popular restaurants in San Francisco, was managing the floor at Kin Khao the other night when a call came in from someone asking about their delivery order. This was surprising to her, since her restaurant doesn’t do delivery – not even takeout. After hanging up the phone, she googled “Kin Khao delivery” and found something astonishing: a complete impersonation of their menu and brand, complete with delivery ordering, on Seamless, Grubhub and Yelp.

From Counterfeit Food – alexdanco.com:

xxx

A Hacker Posing as a Venerable British Art Dealer Swindled a Dutch Museum Out of $3.1 Million | artnet News

xxx

The Rijksmuseum Twenthe in Enschede, the Netherlands, was in the midst of a months-long email negotiation with dealer Simon C. Dickinson to purchase a prized John Constable painting when hackers hijacked the exchange, posing as Dickinson and convincing the museum to funnel the money into a Hong Kong bank account.

Now the museum is attempting to sue Dickinson, claiming the dealer should have known about the fraud, according to Bloomberg.

In a London commercial court this morning, Gideon Shirazi, a lawyer representing the museum, argued that negligence on the part of the dealer’s team allowed the thieves to steal the museum’s money.

Dickinson’s lawyer, Bobby Friedman, said the museum should have independently confirmed the legitimacy of the bank account before wiring the money, adding that his client, a specialist in Old Master paintings, was never aware any fraud was taking place. Each side is accusing the other of having been hacked.

From A Hacker Posing as a Venerable British Art Dealer Swindled a Dutch Museum Out of $3.1 Million | artnet News:

xxx

Essays | Conrad Bastable

xxx

We would expect all the finance-industry activity to drive the price of the Pound up much higher than it otherwise would be, and therefore to push United Kingdom-based Industrial activity right out of the United Kingdom, regardless of any Euro-based shenanigans. This also matches with the observation that, economically-speaking, the United Kingdom has become a one-city nation (London, i.e. Finance), with prior hubs of maritime trade and/or manufacturing fallen to irrelevance (Liverpool, Birmingham, Manchester, etc., don’t follow those links if you’re in a cheery mood).[8]

From Essays | Conrad Bastable:

xxx

Banking on the Future: Why our most hated institutions will become our most beloved

xxx

The new bank obviously needs to comply with regulation. In the US, this is most often achieved by finding a sponsoring bank partner. (This tactic is much faster and has a higher likelihood of success than applying for a license.) A regulated bank agrees to “lend” the new bank its license in exchange for a financial cut of whatever the new bank is offering. Typically, that means the sponsoring bank gets more deposits without having to pay to acquire those customers.

From Banking on the Future: Why our most hated institutions will become our most beloved:

xxx

High Court grants proprietary injunction over Bitcoin cyber ransom payment to a third party | RPC

xxx

The decision of AA v Persons Unknown & Ors, Re Bitcoin [2019] EWHC 3556 (Comm) of the English High Court provides some hope that in the right case, some of the ransom could be recovered.

The facts

The customer of an English insurer (who chose to remain anonymous) suffered a ransomware attack in which their data and systems were encrypted and a Bitcoin ransom payment was demanded. The Insurer, after some negotiation, agreed to pay the ransom in exchange for a decryption tool. The payment was about $950,000. After the ransom was paid, the Insurer investigated whether it could be recovered. While some of the Bitcoin had been transferred into untraceable legal tender, a substantial portion of the Bitcoin could still be traced to a specific Bitcoin address. This address was linked to an exchange platform called Bitfinex operated by two of the Defendants in the case. The other two Defendants were the unknown persons who demanded the ransom and the unknown controllers of the Bitcoin address. The Insurer sought a proprietary injunction over the traced Bitcoin as the first step in recovering the ransom payment.

The decision

Fundamentally, the Court decided that crypto assets such as Bitcoin are considered to be ‘property’ capable of being the subject of a proprietary injunction. The Judge also decided that the test for a proprietary injunction was satisfied for the purposes of interim relief which included addressing the serious fraud issue that was to be tried and the traceability of the fraudulent recipient of the Bitcoin.

From High Court grants proprietary injunction over Bitcoin cyber ransom payment to a third party | RPC:

xxx

What happens in Paris shouldn’t stay in Paris | LinkedIn

xxx

Take digital currencies: They had their share of attention and discussion this week, but it is clear to me that the next decade will see many government-backed digital currencies become part of the global economy. Some governments will embrace these new currencies for their efficiencies and the potential for reaching the unbanked. We will also see legitimate private digital currencies find their niche but only when they focus on solving a real consumer need, are consistent with the economic system of the markets they operate in, and balance the interests of all stakeholders in the ecosystem.

From What happens in Paris shouldn’t stay in Paris | LinkedIn:

xxx

Design a site like this with WordPress.com
Get started