Security Affairs

DECEMBER 17, 2019

TP-Link has addressed a critical vulnerability impacting some TP-Link Archer routers that could allow attackers to login without passwords. “In such an event, the victim could lose access to the console and even a shell, and thereby would not be able to re-establish a new password.” ” continues the post.

Passwords 95

Passwords Advertising Firmware Authentication 95

Security Affairs

AUGUST 3, 2019

Dragonblood researchers found two new weaknesses in WPA3 protocol that could be exploited to hack WPA3 protected WiFi passwords. passwords. A group of researchers known as Dragonblood (Mathy Vanhoef and Eyal Ronen ) devised new methods to hack WPA3 protected WiFi passwords by exploiting two new vulnerabilities dubbed Dragonblood flaws.

Passwords 94

Passwords Hacking Wireless Authentication 94

Security Affairs

SEPTEMBER 16, 2019

A flaw in LastPass password manager leaks credentials from previous site. An expert discovered a flaw in the LastPass password manager that exposes login credentials entered on a site previously visited by a user. Go to [link] , when prompted for password click the little “…” icon. Pierluigi Paganini.

Password Management 97

Password Management Passwords Advertising Mobile 97

Security Affairs

JANUARY 2, 2020

The Poloniex cryptocurrency exchange is forcing users to reset their passwords following a data leak. . Another bad news for the community of the virtual currencies communities, the Poloniex cryptocurrency exchange has forced its users to reset their passwords following a data leak. . This is a real email! Pierluigi Paganini.

Passwords 60

Passwords Cryptocurrency Data breaches Advertising 60

Security Affairs

AUGUST 17, 2019

Trend Micro addressed 2 DLL hijacking flaws in Trend Micro Password Manager that could allow malicious actors to escalate privileges and much more. “ SafeBreach Labs discovered a new vulnerability in Trend Micro Password Manager software.” ” reads the security advisory published by Trend Micro.

Password Management 82

Password Management Passwords Advertising Authentication 82

Security Affairs

SEPTEMBER 23, 2019

The online education platform for developers Thinkful suffered a security breach and is notifying the incident to its customers requiring them to reset their passwords. The company is notifying the incident to its users via email and is forcing a password reset in response to the incident. ” continues the notification.

Data breaches 80

Data breaches Passwords Education Advertising 80

Security Affairs

AUGUST 30, 2019

Foxit Software, the company behind the Foxit PDF reader app, disclosed a data breach that exposed customers’ information, including passwords. Foxit Software, the PDF software provider behind the Foxit PDF reader app disclosed a security breach that took place recently exposing customers’ information.

Data breaches 81

Data breaches Passwords Software Identity Theft 81

Security Affairs

SEPTEMBER 6, 2019

600,000 GPS trackers left exposed online with a default password of ‘123456’ Avast researchers found at least 600,000 GPS trackers manufactured by a Chinese vendor that were exposed online with a default password of “123456.” The use of default passwords represents a serious problem also for the Chinese vendor.

Passwords 81

Passwords Manufacturing Advertising Firmware 81

Security Affairs

MAY 22, 2019

Google accidentally stored the passwords of its G Suite users in plain-text for 14 years allowing its employees to access them. The news is disconcerting, Google has accidentally stored the passwords of the G Suite users in plain-text for 14 years, this means that every employee in the company was able to access them.

Passwords 82

Passwords Encryption Advertising Accountability 82

Security Affairs

JULY 21, 2019

The airline company WizzAir informed its customers that it had reset the account passwords due to a technical issue in the system. The airline company WizzAir had reset the account passwords of its users due to a technical issue in its system. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Passwords 74

Passwords Accountability Advertising Hacking 74

Security Affairs

JANUARY 2, 2020

Security expert discovered a Google Chrome extension named Shitcoin Wallet that steals passwords and wallet private keys. Harry Denley, director of security at the MyCrypto , discovered that the Google Chrome extension named Shitcoin Wallet is stealing passwords and wallet private keys. Pierluigi Paganini.

Passwords 68

Passwords Cryptocurrency Advertising Antivirus 68

Security Affairs

AUGUST 13, 2020

The leaked data includes login names, hashed passwords, and email addresses. It is not confirmed that all of the leaked data is legitimate, anyway, experts suggest users change their password immediately. Users that share the password at another site should also change the password. Pierluigi Paganini.

Hacking 139

Hacking Data breaches Cybercrime Passwords 139

Security Affairs

NOVEMBER 4, 2020

Yesterday almost $1 billion worth of cryptocurrency contained in a password-protected BitCoin wallet was moved to another wallet. Ahead of the 2020 Presidential election a mysterious transaction was noticed by cyber security experts and researchers. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Cryptocurrency 141

Cryptocurrency Passwords Advertising Hacking 141

Security Affairs

NOVEMBER 1, 2020

Users of the above companies have to immediately change their passwords, and if they use the same passwords at other sites, they should also change the password at those sites. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. .” states BleepingComputer. Pierluigi Paganini.

Data breaches 145

Data breaches Accountability Advertising Passwords 145

Security Affairs

APRIL 5, 2020

A group of security researchers has found thousands of Android apps containing hidden backdoors and blacklists. There are 7,584 apps with secret access keys, 501 apps that embed master passwords, and 6,013 apps with secret commands. Moreover, these security risks hold generally across all of our data sources.

Mobile 117

Mobile Passwords Advertising Firmware 117

Security Affairs

APRIL 11, 2020

The SFO ITT urges anyone who even visited either website using the Internet Explorer web browser to change the device’s password. In response to the incident, the SFO Airport reset all email and network passwords. The airport also forced a reset of all SFO related email and network passwords on Monday, March 23, 2020.”

Data breaches 142

Data breaches Hacking Telecommunications Passwords 142

Security Affairs

JUNE 28, 2020

” “We use Facebook and LinkedIn for account login and do not store any passwords on our system. If you use the legacy email and password login, your passwords are encrypted, but we highly encourage that you change it. We do not store any credit card or payment related information on our servers.”

Media 142

Media Hacking Passwords Data breaches 142

Security Affairs

MARCH 23, 2020

107 million records include personal data and basic account information such as the user ID, number of Weibo tweets, number of followers and accounts users are following, account gender, geographic location and more. The dump doesn’t include Weibo users’ passwords. ” reported the website PingWest. ?????????????

Accountability 113

Accountability Passwords Advertising Internet 113

Security Affairs

OCTOBER 19, 2020

A threat actor has breached the forum of Albion Online and stole usernames and password hashes from its database. On top of that, the attacker gained access to encrypted passwords (in technical terms: hashed and salted passwords).” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Hacking 103

Hacking Data breaches Passwords Advertising 103

Security Affairs

NOVEMBER 5, 2021

“They are officers of the ‘Crimean’ FSB and traitors who defected to the enemy during the occupation of the peninsula in 2014. This ‘line of work’ is coordinated by the FSB’s 18th Center (Information Security Center) based in Moscow.” 5 members of the group have been notified of suspicion of treason.”

Government 124

Government Software Cyber threats Cyber Attacks 124

Krebs on Security

JULY 18, 2023

com , a service that sold access to billions of passwords and other data exposed in countless data breaches. KrebsOnSecurity has learned that the owner of Defiant Tech, a 32-year-old Ontario man named Jordan Evan Bloom , was hired in late 2014 as a developer for the marital infidelity site AshleyMadison.com.

Hacking 187

Hacking Accountability Data breaches Marketing 187

Security Affairs

APRIL 26, 2020

The data for any specific firewall depends upon the specific configuration and may include usernames and hashed passwords for the local device admin(s), portal admins, and user accounts used for remote access.” ” “Passwords associated with external authentication systems such as AD or LDAP are unaffected.

Firewall 145

Firewall Passwords Accountability Advertising 145

Security Affairs

APRIL 14, 2020

Quidd , the online marketplace for trading stickers, cards, toys, and other collectibles, discloses a data breach in has suffered in 2019, it is also recommending users to change their passwords. The data breach was first reported by Risk Based Security last week, since then, Quidd has never disclosed any data breach recent security incident.

Accountability 140

Accountability Hacking Data breaches Passwords 140

Security Affairs

SEPTEMBER 24, 2020

The recent Emotet campaign uses spam messages with password-protected attachments, experts noticed a decline in infections over the weekend, a behavior already observed in the past. Emotet joined the password-protected attachment bandwagon with a campaign starting Friday. ” states the Italian CSIRT’s alert. .

Malware 128

Malware Passwords Advertising Cybercrime 128

Security Affairs

AUGUST 4, 2020

UberEats is an American online food ordering and delivery platform launched by Uber in 2014. “During our research process, the Cyble Research Team got hold of some informative details related to this leak.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Banking 145

Banking Data breaches Mobile Advertising 145

Security Affairs

AUGUST 7, 2019

This kind of attacks is very efficient due to the bad habit of users of reusing the same password over multiple services. During our investigation, we determined that the bad actor possessed the user ID and password for your State Farm online account.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Insurance 87

Insurance Data breaches Financial Services Passwords 87

Security Affairs

JULY 28, 2020

The huge trove of data contains over 386 million user records, but only some of them included the user’s password. Users of the above companies are recommended to change their passwords as soon as possible, they have to change the passwords where they used the same login credentials.

Passwords 132

Passwords Advertising Education Banking 132

Security Affairs

APRIL 20, 2020

Over 267 million Facebook profiles are offered for sale on dark web sites and hacker forums, the dump is offered for £500 ($623) and doesn’t include passwords. Hackers are offering for sale over 267 million Facebook profiles for £500 ($623) on dark web sites and hacker forums, the archive doesn’t include passwords.

Data breaches 145

Data breaches Passwords Advertising Phishing 145

Security Affairs

FEBRUARY 11, 2020

The bank changed 23,000 passwords in 2018 without consent. However, some branch employees of Woori Bank modified the passwords and as a result of the operation, the accounts have been reactivated. However, some branch employees of Woori Bank modified the passwords and as a result of the operation, the accounts have been reactivated.

Banking 97

Banking Passwords Accountability Advertising 97

Security Affairs

AUGUST 17, 2020

These attacks, which used passwords and usernames collected from previous hacks of accounts worldwide, took advantage of the fact that many people reuse passwords and usernames across multiple accounts.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” states the press release.

Government 135

Government Accountability Hacking Advertising 135

Security Affairs

JANUARY 25, 2020

Cisco has addressed a high-severity flaw in the Cisco Webex video conferencing platform ( CVE-2020-3142) that could be exploited by a remote, unauthenticated attacker to enter a password-protected video conference meeting. reads the security advisory published by Cisco. Pierluigi Paganini. SecurityAffairs – Webex, hacking).

Mobile 135

Mobile Passwords Advertising Authentication 135

Security Affairs

JUNE 1, 2020

Data contained in the backup includes : Full name Business address Business email address Business phone number Company URL Nature of business Encrypted password (hashed) IP address Newsletter subscription preferences. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” concludes the notification.

Data breaches 102

Data breaches Backups Passwords Advertising 102

Security Affairs

AUGUST 3, 2020

The leaked records included a login name, full name, MD5 hashed password, email address, phone number, zip, and other data related. The company has notified impacted users via email, it admitted to having recently discovered the data breach, in response to the incident it has forced a password reset.

Data breaches 103

Data breaches Accountability Passwords Advertising 103

Security Affairs

SEPTEMBER 16, 2020

According to security firm Tencent, the team of hackers has been active over the past few months by hacking into Microsoft SQL Servers (MSSQL) to install a crypto-miner. “Tencent Security Threat Intelligence Center detected a new type of mining Trojan family MrbMiner. Pierluigi Paganini. SecurityAffairs – hacking, MrbMiner).

Malware 139

Malware Cryptocurrency Advertising Accountability 139

Security Affairs

MARCH 16, 2020

Last week, Open Exchange Rates disclosed a data breach that exposed the personal information and hashed passwords for customers of its API service. Last week, the currency data provider Open Exchange Rates has disclosed a data breach that exposed the personal information and salted and hashed passwords for customers of its API service.

Data breaches 106

Data breaches Passwords Advertising Accountability 106

Security Affairs

SEPTEMBER 21, 2020

Change your Activision account passwords and add 2FA immediately. Activision accounts are apparently being leaked so change your password, although that might not even help because they're apparently generating 1,000 accounts every 10 minutes. Players are recommended to change their account passwords as soon as possible.

Hacking 110

Hacking Data breaches Accountability Passwords 110

Security Affairs

JULY 15, 2021

SonicWall also provides recommendations to customers that can’t update their installs, the vendor suggests disconnecting devices immediately and reset their access passwords, and enable account multi-factor authentication, if supported. Continued use of this firmware or end-of-life devices is an active security risk,” states the alert.

Firmware 110

Firmware Ransomware Passwords Mobile 110