Data loss

bitdefender.com

Sensitive data can lurk on second-hand hard drives

Birth certificates, photographs, names, email addresses, credit card details, social security numbers. All to be found on used hard drives for sale on eBay.

Read more in my article on the Bitdefender Business Insights blog.


0 sec read

Docker Hub security breach exposes credentials of 190,000 users

Some bad news arrived late on Friday in the inboxes of users of Docker, the container platform beloved by developers. A hacker accessed usernames, hashed passwords, GitHub and Bitbucket tokens.


1 min read

bitdefender.com

Hacker could locate thousands of cars and kill their engines remotely via poorly-secured GPS tracking apps

App accounts were “protected” by a default password. That password? 123456.

Read more in my article on the Hot for Security blog.


0 sec read

bitdefender.com

Bodybuilders beware! One of the world’s largest online fitness stores hit by security breach

Fitness fanatics are being advised to change their passwords after one of the world’s largest and most popular online fitness stores admitted that it had suffered a security breach that might have exposed customer data.

Read more in my article on the Hot for Security blog.


0 sec read

Smashing Security #124: Poisoned porn ads, the A word, and why why why Wipro?

The hacker who lived the high life after spreading malware via porn sites, Wipro demonstrates how to turn a cybersecurity crisis into a PR disaster, and why are humans listening in to your Alexa conversations?

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Brian Honan.


1 min read

bitdefender.com

Hackers could read users’ Outlook, Hotmail, and MSN email via compromised Microsoft support account

Microsoft says that it had identified that one of its support agents had had their username and password stolen, which allowed hackers to access information stored within users’ email accounts.

Read more in my article on the Hot for Security blog.


0 sec read

Ticketmaster is hit by a £5 million legal action after online payment card theft

A British firm of solicitors, which specialises in helping victims of cybercrime claim compensation, has launched a £5 million (US $6.5 million) legal action against Ticketmaster.


1 min read

tripwire.com

Unsecured databases found leaking half a billion resumes onto the net, no password required

A staggering 590 million resumes have leaked from poorly-secured Chinese companies in just the last three months.

Read more in my article on the Tripwire State of Security blog.


0 sec read

540 million Facebook records left exposed due to sloppy third-party developer security

Security researchers have discovered a huge amount of data containing information about tens of thousands of Facebook users, left available for anyone to access – no password required.

The culprits? Third-party developers.


2 min read

Smashing Security #121: Hijacked motel rooms, ASUS PCs, and leaky apps

An app leaking private conversations and intimate photographs is ignoring requests to fix the problem, hackers poison a security update sent to ASUS PCs, and how to protect your privacy in motel rooms.

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis.


1 min read

bitdefender.com

Popular family tracking app exposed real-time location data onto the internet – no password required

More than 238,000 individuals users have had their family’s real-time location exposed for weeks on end after an app developer left sensitive data exposed on the internet, without a password.

Read more in my article on the Hot for Security blog.


0 sec read

Smashing Security #120: Silk Road with Deliveroo

Online drug dealers get busted due to poor OPSEC! People are still failing to wipe their USB sticks properly! A potential presidential candidate is outed as a former hacker! Flat Earthers! Pi! Empathy!

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Paul Ducklin.


1 min read

Myspace has lost all the music users uploaded between 2003 and 2015

You cannot trust the likes of Myspace to look after your data securely. Use internet services to archive your content if you wish, but you’d be wise to have your own backup too.


1 min read

bitdefender.com

Man arrested for selling one million Netflix, Spotify, Hulu passwords

The WickedGen website bragged that it had over 120,000 users and almost one million sets of account details, offering monthly and yearly membership plans for those who wanted “access to thousands of premium accounts across a huge range of services.”

Read more in my article on the Hot for Security blog.


0 sec read

Citrix hackers may have stolen six terabytes worth of files

The FBI suspects that the hackers used a technique known as “password spraying”.


1 min read

bitdefender.com

Facebook sues quiz app developers who allegedly stole users’ private data through browser plugins

Facebook is taking a stand against a pair of Ukrainian app developers who it claims scraped personal information from users’ profiles.

Read more in my article on the Hot for Security blog.


0 sec read



Stay informed!

Join thousands of others by signing-up for the free “GCHQ” newsletter, containing the latest news and tips from security expert Graham Cluley.

Name:

Email:

Yes, I would like to subscribe to email updates from Graham Cluley. I know it’s easy to unsubscribe if I ever change my mind.