Jada's Tech Tips

How To Tell If Your Data Is Breached Recently Ticketmaster, a popular company used to buy and sell tickets for events and concerts, was attacked. Over half a million people use this software and have given this company private information like credit card numbers. This is a huge data breach, and it is very important to check to see if your data is safe. Read this article for more information on how to check if your data, like credit card numbers or home addresses has been breached. And even if you don't use Ticketmaster, it is still good to take these steps every month to ensure your data is safe. Article: https://www.abc.net.au/news/2024-05-30/ticketmaster-data-breach-how-to-check-if-you-have-been-hacked/103912494

Cyber Trust Labels  Hello everyone! This week I chose to share an article about products having "Cyber Trust" labels. These labels indicate that the product has passed federal cybersecurity standards. I think this is a great idea, and it will encourage people to care about how safe their devices are, such as baby monitors, or home security cameras. Having a "Cyber Trust" label will improve customer confidence in that product, knowing it will be less vulnerable to cyber threats. As these threats increase more and more on everyday devices, these labels will also help inform the public of the importance of cybersecurity.  Check out the article here:  https://apnews.com/article/cybersecurity-google-samsung-amazon-cyber-trust-e5f0ab2a207e556190e189dbb27c7b71

Huge Flaw Found in AI Python Package  Sources:  https://www.securityweek.com/critical-flaw-in-ai-python-package-can-lead-to-system-and-data-compromise/ https://checkmarx.com/blog/llama-drama-critical-vulnerability-cve-2024-34359-threatening-your-software-supply-chain/ Patrick Peng recently discovered a flaw within the AI Python library  'llama-cpp-python' (used for integrating AI models with Python) and it has been identified as  CVE-2024-34359 .  The issue is that there is not proper security implemented in handling chat templates using 'jinja2'. Jinja2 is a library and is a popular tool within python, and is very powerful when used correctly. But Jinja2 was not implemented correctly, which resulted in the CVE-2024-34359 flaw. This vulnerability allows hackers to execute arbitrary code on that system running the library, potentially allowing for attackers to control that system. This can also lead to data theft and system compromise, affecting both personal inf...