Taboola confirms security breach, and has its PayPal account pwned

This weekend, visitors to news articles on the Reuters website found themselves redirected to a page belonging to the Syrian Electronic Army hacking group.

Now Taboola has put its hands up, and said that it was its widget which got hacked.

Reuters website ‘hacked’ by the Syrian Electronic Army, but Taboola blamed for letting them in

The finger of suspicion points to Taboola, as visitors to the Reuters website were redirected by hackers.

Find out more in my article for the Hot for Security blog.

RSA attempts (and fails) to refute claims it helped NSA weaken encryption

Nothing in RSA’s statement denies that the NSA paid them to make Dual_EC_DRBG the default random number generator in BSAFE encryption tools.