Troy Hunt – WindowsTechs.com

Mozilla Drops Onerep After CEO Admits to Running People-Search Networks

Posted on March 22, 2024 by BrianKrebs

The nonprofit organization that supports the Firefox web browser said today it is winding down its new partnership with Onerep, an identity protection service recently bundled with Firefox that offers to remove users from hundreds of people-search sites. The move comes just days after a report by KrebsOnSecurity forced Onerep’s CEO to admit that he has founded dozens of people-search networks over the years. Continue reading Mozilla Drops Onerep After CEO Admits to Running People-Search Networks→

The Security Pros and Cons of Using Email Aliases

Posted on August 10, 2022 by BrianKrebs

One way to tame your email inbox is to get in the habit of using unique email aliases when signing up for new accounts online. Adding a “+” character after the username portion of your email address — followed by a notation specific to the site you’re signing up at — lets you create an infinite number of unique email addresses tied to the same account. Aliases can help users detect breaches and fight spam. But not all websites allow aliases, and they can complicate account recovery. Here’s a look at the pros and cons of adopting a unique alias for each website. Continue reading The Security Pros and Cons of Using Email Aliases→

Troy Hunt Flags Up ‘Sensational’ Sextortion Bug in Grindr

Posted on October 5, 2020 by Richi Jennings

Grindr, the popular dating app, had a ridiculous bug in its password-recovery flow. To make matters worse, Grindr ignored the bug for a week.
The post Troy Hunt Flags Up ‘Sensational’ Sextortion Bug in Grindr appeared first on Security Boulevard.
Continue reading Troy Hunt Flags Up ‘Sensational’ Sextortion Bug in Grindr→

Have I Been Pwned Set to Go Open-Source

Posted on August 7, 2020 by Tara Seals

Fully opening the door to allow people to contribute to – and notably, tinker with – the code for the data-breach information service will be an entirely next-level effort, according to founder Troy Hunt. Continue reading Have I Been Pwned Set to Go Open-Source→

News Wrap: Fake Minneapolis Police Breach, Zoom End-To-End Encryption Debate

Posted on June 5, 2020 by Lindsey O'Donnell

Threatpost editors discuss debunked reports of a Minneapolis police department breach and Zoom announcing only paying users would get end-to-end encryption. Continue reading News Wrap: Fake Minneapolis Police Breach, Zoom End-To-End Encryption Debate→

Minneapolis Police Department Hack Likely Fake, Says Researcher

Posted on June 1, 2020 by Tara Seals

Troy Hunt said that the supposed data breach perpetrated by Anonymous is most likely a hoax. Continue reading Minneapolis Police Department Hack Likely Fake, Says Researcher→

Hackers Sell Data from 26 Million LiveJournal Users on Dark Web

Posted on May 27, 2020 by Elizabeth Montalbano

Passwords and other credentials have been listed on Have I Been Pwned as attack rumors circulate. Continue reading Hackers Sell Data from 26 Million LiveJournal Users on Dark Web→

Ukraine Nabs Suspect in 773M Password ‘Megabreach’

Posted on May 19, 2020 by BrianKrebs

In January 2019, dozens of media outlets raised the alarm about a new “megabreach” involving the release of some 773 million stolen usernames and passwords that was breathlessly labeled “the largest collection of stolen data in history.” A subsequent review by KrebsOnSecurity quickly determined the data was years old and merely a compilation of credentials pilfered from mostly public data breaches. Earlier today, authorities in Ukraine said they’d apprehended a suspect in the case. Continue reading Ukraine Nabs Suspect in 773M Password ‘Megabreach’→

Have I Been Pwned No Longer For Sale

Posted on March 3, 2020 by Lindsey O'Donnell

Troy Hunt said the popular HIBP will continue to be run as an independent service. Continue reading Have I Been Pwned No Longer For Sale→

More Than 140GB of Data Exposed by Israeli Marketing Company

Posted on February 28, 2020 by David Bisson

An Israeli marketing company exposed more than 140GB of data by mishandling the credentials for an Elasticsearch database. A San Diego-based DevOps engineer who uses the Twitter handle 0m3n detected the disclosure after they grew tired of receiving tex… Continue reading More Than 140GB of Data Exposed by Israeli Marketing Company→