Application Security ‘Phantom’ Source Code Secrets Haunt Major Organizations Aqua Security shows that code in repositories remains accessible even after being deleted or overwritten, continuing to leak secrets. Ionut ArghireJune 27, 2024
Cybercrime BlackBerry Cylance Data Offered for Sale on Dark Web BlackBerry says the Cylance data offered for sale for $750,000 is old and its own systems have not been compromised. Eduard KovacsJune 11, 2024
Data Breaches New York Times Responds to Source Code Leak The New York Times has issued a statement after someone leaked source code allegedly belonging to the news giant. Eduard KovacsJune 10, 2024
Data Breaches Dell Says Customer Names, Addresses Stolen in Database Breach Tech giant notifies millions of customers that full names and physical mailing addresses were stolen during a security incident. SecurityWeek NewsMay 9, 2024
Data Breaches Acuity Responds to US Government Data Theft Claims, Says Hackers Obtained Non-Sensitive Info Acuity, the tech firm from which hackers claimed to have stolen State Department and other government data, confirms hack, but says stolen info is... Eduard KovacsApril 5, 2024
Data Breaches Misconfigured Firebase Instances Expose 125 Million User Records A weakness in a Firebase implementation allowed researchers to gain access to names, phone numbers, email addresses, plaintext passwords, confidential messages, and more. Ionut ArghireMarch 19, 2024
Vulnerabilities ExpressVPN User Data Exposed Due to Bug ExpressVPN disables split tunneling on Windows after learning that DNS requests were not properly directed. Ionut ArghireFebruary 12, 2024
Government Ex-CIA Computer Engineer Gets 40 Years in Prison for Giving Spy Agency Hacking Secrets to WikiLeaks Former CIA software engineer sentenced to 40 years in prison for biggest theft of classified information in CIA history and for possession of child... Associated PressFebruary 2, 2024
Data Breaches Mercedes Source Code Exposed by Leaked GitHub Token A leaked token provided unrestricted access to the entire source code on Mercedes-Benz’s GitHub Enterprise server. Ionut ArghireJanuary 31, 2024
Cybercrime List Containing Millions of Credentials Distributed on Hacking Forum, but Passwords Old Naz.API credential stuffing list containing 70 million unique email addresses and old passwords found on hacking forum. Ionut ArghireJanuary 18, 2024
Data Breaches Customer Information of Toyota Insurance Company Exposed Due to Misconfigurations Exposed credentials for an email address at an Indian Toyota insurance broker led to customer information compromise. Ionut ArghireJanuary 18, 2024
Uncategorized Celebrities Found in Unprotected Real Estate Database Exposing 1.5 Billion Records Real Estate Wealth Network database containing real estate ownership data, including for celebrities and politicians, was found unprotected. Ionut ArghireDecember 21, 2023