Yahoo will confirm later this week that hackers did breach its systems in 2012, stealing personal data for about 200 million accounts, including easily decrypted passwords. More →
A security researcher who hunts bugs for a living says that Google won’t acknowledge one of his findings. According to Aidan Woods, the way Google’s login pages are built would help an attacker either steal login information from unsuspecting users or convince them to install files which would appear to be downloading directly from Google. More →
We get it, companies get hacked all the time. And they’re not too eager to share details about data breaches, but they ultimately have to release details about it so that affected users can protect themselves. At least, they should disclose details. But Dropbox failed to do so, hiding for no less than four years the magnitude of a data breach that may have affected up to 68 million accounts. More →
It’s been a rough week for the NSA, to say the least. Last week, a group of hackers collectively known as The Shadow Brokers allegedly stole and released a treasure trove of NSA hacking tools and exploits. What’s more, the group promised to release even more weapons from the NSA’s cyber arsenal for the right price.
While the initial leak was met with skepticism, researchers and security experts who examined the leak subsequently confirmed that the leaked exploits were very much real. “It definitely looks like a toolkit used by the NSA,” French computer researcher Matt Suiche said after taking a look at the code.
As if that weren’t bad enough, now comes word that The Shadow Brokers may not be the only hackers who hold the keys to the NSA’s cache of advanced hacking tools and exploits.
Remember when news broke out that a certain retail or hotel chain was hit by a sophisticated malware attack that allowed hackers to steal personal information belonging to a large number of customers, including payment information? Well, this is such a case. And if you stayed at one of the 20 following hotels and paid for goods using your credit cards, then your financial data may be at risk, and you probably have to take various preemptive measures. More →
Unidentified Russian hackers targeted the Democrats ahead of the Democratic National Convention (DNC) last month, exposing the pro-Hillary Clinton bias inside the party during the primaries. An investigation by the FBI has revealed that the scope of the attack may be a lot bigger than initially expected. More →
Pokemon Go might just be the game of the year. Nintendo struck gold with this mobile endeavor, as millions of users around the world have already downloaded the application and are devoting plenty of time to hunting Pokemon. That also means that hackers have adapted their attacks to hunt those Pokemon fans who’re eager to try out the application. Researchers have already discovered malware inside versions of the Pokemon Go app for Android. More →
You might want to think twice when sharing your Netflix or HBO password with a friend or loved one, because it apparently constitutes a punishable federal crime. That’s according to a new ruling from the Ninth Circuit Court of Appeals in a case that has nothing to do with online streaming sites or binge-watching sessions, but does involve the sharing of passwords. More →
So you have an air-gapped computer, or unconnected to the Internet, and you think your data is secured just because it’s not accessible online? In most cases that might be true, but that’s not 100% accurate. There are ways to steal information from computers that are not connected to the web, and smart hackers will not stop looking for such tricks. The newest such malware would let attackers steal information from supposedly secure computers with the help of the sound made by its fans and processor. More →
No one is safe on the internet these days, not even the savviest users who sit atop powerful tech companies. After hackers successfully hit Mark Zuckerberg’s Pinterest account earlier this month, they hacked Google CEO Sundar Pichai’s Quora account. More →
A hacker who goes by the name ‘Guccifer 2.0’ claims to have published a dossier of Hillary Clinton-related documents accessed during the recent attackon the Democratic National Committee’s computers.
In a blog post Tuesday, Guccifer 2.0 described the haul as “a big folder of docs devoted to Hillary Clinton that I found on the DNC server.”
The files include a “HRC Defense Master Doc” outlining criticism and defense points on issues such as U.S. military intervention in Libya, the deadly 2012 Benghazi attack and the Clinton email server controversy. More →
Was a lone hacker behind the recent attack on the Democratic National Committee’s computers? An individual describing themselves as ‘Guccifer 2.0’ claimed responsibility for the hack in a blog post Wednesday, touting documents purportedly accessed in the attack.
But experts have been looking for clues about the mysterious self-described hacker, and suspicions still linger that the Russian government played a role in the DNC hack.
Citing security researcher Pwn All The Things, Ars Technica reports that metadata from one of the leaked documents indicates editing by someone using a computer configured to use the Russian language. Additionally, the document was edited by someone using the Russian translation of the computer name ‘Felix Dzerzhinsky,’ according to the research. A Russian revolutionary, Dzerzhinsky was also director of the Cheka, the Soviet secret police. More →
Welcome to the internet age, where hackers are getting smarter every day and malware is lurking around every corner. We’ve seen a terrifying amount of big data breaches occur over the past few years, and each one seems bigger and scarier than the last. Today, however, we get a new reminder that data breaches are just one of the ways hackers get their hands on our data. Reports are flying that tens of millions of valid Twitter account credentials have been made available for sale on the dark web, though the company has denied that a breach took place.
Whatever the case, the most important takeaway is this: Change your Twitter password immediately. More →