Collaborate Disseminate
ProtonMail is sending a warning urging all users of the end-to-end encrypted email service to be on the lookout for phishing scams impersonating ProtonMail. “Dear ProtonMail user, over the last few days we have noticed an unusually high number of… Continue reading ProtonMail warns all users to beware of phishing scam
Despite an increasingly dangerous threat landscape and heightened global awareness of hacking and data breaches, password hygiene leaves a lot to be desired. 91 percent of people know that password recycling poses huge security risks, yet 59 percent st… Continue reading 59% of people use the same password everywhere, poll finds
A misconfigured MongoDB database has led to the leak of names, email and physical addresses, wallet information, encrypted passwords, and driver’s license and passport numbers of 25,000 early investors in Bezop. The leak deals a second security-r… Continue reading Blockchain-powered e-commerce startup leaks personal information of 25,000 early investors
Locking out a “user” after too many failed login attempts should be a best practice by anyone who owns a website with a login field or subscription form, if a new research is any indication. Fraudsters are using elaborate – but predic… Continue reading Researchers find bad bots designed for account takeover on 100% of websites with login pages
27-year-old Konrads Voits, convicted of hacking Washtenaw County computer systems to try to get a friend out of prison early, now faces prison time himself. Volts has been sentenced to seven years and three months behind bars – and his laptop and… Continue reading After failing to jailbreak friend, Washtenaw County hacker gets seven years in prison
Ridesharing service Uber has announced some changes to its bug bounty program, including a new set of terms and conditions, as well as new monetization opportunities for white hatters. First off, some stats. Since August 2017, Uber has rewarded ethical… Continue reading Uber updates bug bounty program, adds bonus for proof-of-concept (POC)
When the EU confirmed plans to implement the General Data Protection Regulation (GDPR), organizations had more than a year to make the changes needed to ensure compliance.
The post Most Organizations Lack Systems and Processes to Ensure GDPR Compl… Continue reading Most Organizations Lack Systems and Processes to Ensure GDPR Compliance, Survey Shows
The Drupal security team is urging users of its open-source content management platform to update the core software, or at the very least install the latest patches, as hackers are now actively exploiting a critical vulnerability. A remote code executi… Continue reading Critical Drupal vulnerability now being exploited in the wild; users urged to patch ASAP
Google is rolling out new security features to its G Suite business customers, as well as to consumers, with Gmail in particular receiving some cool new abilities, like expiry dates and revocation of already-sent emails. The new Gmail has a new web int… Continue reading New ‘self-destruct’ feature lets Gmail users set expiry date on emails
In an ongoing investigation by the Securities and Exchange Commission, Yahoo (now Altaba) has been fined $35 million for failing to report a known data breach in two straight years of SEC filings. Publicly traded companies in the United States are requ… Continue reading Yahoo gets $35 million slap on wrist for failing to disclose colossal 2014 data breach