Accurate, Focused Research on Law, Technology and Knowledge Discovery Since 2002

You Are Here:Home » Archives: October 2022

Daily Archives: October 27, 2022

Thomson Reuters collected and leaked at least 3TB of sensitive data

by on

cybernews: “Thomson Reuters, a multinational media conglomerate, left an open database with sensitive customer and corporate data, including third-party server passwords in plaintext format. Attackers could use the details for a supply-chain attack.  The Cybernews research team found that Thomson Reuters left at least three of its databases accessible for anyone to look at. One of the open instances, the 3TB public-facing ElasticSearch database, contains a trove of sensitive, up-to-date information from across the company’s platforms. The company recognized the issue and fixed it immediately. Thomson Reuters provides customers with products such as the business-to-business media tool Reuters Connect, legal research service and database Westlaw, the tax automation system ONESOURCE, online research suite of editorial and source materials Checkpoint, and other tools. The size of the open database the team discovered corresponds with the company using ElasticSearch, a data storage favored by enterprises dealing with extensive, constantly updated volumes of data.

  • Media giant with $6.35 billion in revenue left at least three of its databases open
  • At least 3TB of sensitive data exposed including Thomson Reuters plaintext passwords to third-party servers
  • The data company collects is a treasure trove for threat actors, likely worth millions of dollars on underground criminal forums
  • The company has immediately fixed the issue, and started notifying their customers
  • Thomson Reuters downplayed the issue, saying it affects only a “small subset of Thomson Reuters Global Trade customers”
  • The dataset was open for several days – malicious bots are capable of discovering instances within mere hours
  • Threat actors could use the leak for attacks, from social engineering attacks to ransomware

Everything dies, including information

by on

MIT Technology Review – Digitization can help stem the tide of entropy, but it won’t stop it. ” Everything dies: people, machines, civilizations. Perhaps we can find some solace in knowing that all the meaningful things we’ve learned along the way will survive. But even knowledge has a life span. Documents fade. Art goes missing.… Continue Reading

Consumers Feel Worse Now Than They Did During Covid Lockdowns

by on

WSJ [paywall]: Sentiment has fallen to levels typically associated with worse financial and economic conditions than today’s: “The University of Michigan survey of consumer sentiment measures how U.S. consumers feel about their personal finances, business conditions and buying conditions. Recent surveys have shown that consumers have rarely felt more downbeat about all of these measures.… Continue Reading

8 Ways to Convince Your Organisation to Invest in Legal Tech

by on

Artifical Lawyer: “All law firms and in-house legal functions know that legal tech is the future. Law is fundamentally about information – laws, precedents, documents – and therefore data. Apply tech to data to manage it efficiently and you give yourself and your clients an edge. But what technology? And once you find a solution,… Continue Reading

That customer service number? It could be a scam.

by on

Washington Post: “…Get customer service numbers from official websites. Treat every phone number like a potential scam risk. Even if the number came from an official-looking email or text, verify it by checking it against the contact number listed on the company’s website before you call. Type in phone numbers rather than clicking links –… Continue Reading

INTERPOL has launched its own metaverse space

by on

“The International Criminal Police Organization, better known as INTERPOL, has unveiled a metaverse space designed specifically for police officers around the world. Immersive training courses in forensic investigation and other policing skills will be on offer in the INTERPOL Metaverse. Registered users will also be able to take a tour of a virtual version the… Continue Reading

What Is Usenet, How Do You Use It, and What Is an NZB File?

by on

Ars Technica: “Usenet has been around for a while; the first version was released in 1979 and was primarily used for transferring information. Also known as Unix Users Network, Usenet had the potential to be the modern internet as we know it. Today, Usenet has evolved considerably and is used for very different purposes than… Continue Reading

Beyond Catastrophe A New Climate Reality Is Coming Into View

by on

The New York Times Magazine – David Wallace-Well – “…Over the last several months, I’ve had dozens of conversations — with climate scientists and economists and policymakers, advocates and activists and novelists and philosophers — about that new world and the ways we might conceptualize it. Perhaps the most capacious and galvanizing account is one… Continue Reading

Climate Action Data Trust

by on

“The International Emissions Trading Association (IETA) today revealed information on the forthcoming launch of Climate Action Data Trust (CAD Trust), a decentralised metadata system that can link, aggregate and harmonise all major carbon market registry data.Climate Action Data Trust (CAD Trust) is a joint initiative of the International Emissions Trading Association, The World Bank and… Continue Reading

In cases challenging affirmative action, court will confront wide-ranging arguments on history, diversity, and the role of race in America

by on

Howe on the Court: “In 2003, the Supreme Court ruled in Grutter v. Bollinger that universities may consider race in their admissions processes as part of their efforts to achieve diversity on campus. On Oct. 31, the justices will hear oral arguments in a pair of cases asking them to overturn Grutter and outlaw race-based… Continue Reading