Pastebin publishes over 300,000 hacked account details in 12 months

Security researchers discover that details of 311,095 compromised accounts (usernames and passwords) have been published on Pastebin in the last 12 months.

And that’s probably the tip of the cybercrime iceberg…

Why Facebook is right to scan ‘private’ messages

A class action suit has been filed against Facebook, claiming that the social network is systematically examining ‘private’ messages sent by users on the social network.

How ethical hackers found a (small) vulnerability on my website

I asked High-Tech Bridge to test my website for security issues, as if they were malicious hackers, and this is what they found…

Yahoo admits its bug bounty goof, and stops offering free t-shirts

Sorry, in future you won’t be given a voucher for $12.50 to spend in the Yahoo Corporate Store if you find a critical vulnerability in a service used by hundreds of millions of internet users.

Serious Yahoo bug discovered. Researchers rewarded with $12.50 voucher to buy corporate T-shirt

Such a risible bug bounty is unlikely to win Yahoo any friends and could – if anything – make it less likely that the site will gain the assistance of white-hats in future.

Security holes found on the NASDAQ website

NASDAQ website found vulnerable to cross-site scripting attacks, and accused of a tardy response.