After database debacle, MacKeeper hires the security researcher who outed vulnerability

mackeeper partners with security researcher that discovered its vulnerabilities  chris vickery
Mac anti-virus software firm MacKeeper has announced an official partnership with Chris Vickery, the security researcher that discovered a database of the company’s users openly available online.

The Analytical and Security Center will be led by Vickery and will carry out regular security audits of the software and establish security best practices to ensure the safety of users.

Vickery, a white-hat researcher, appeared with MacKeeper as CES in Las Vegas earlier this month to discuss his new affiliation with the company. Vickery will also run the Security Watch blog on MacKeeper’s website, where he will report on new vulnerabilities and offer security advice.

Vickery will remain an independent researcher, a spokesperson for MacKeeper said, but he will receive compensation for writing the blog.

Vickery is known around the security community for regularly breaking news on data breaches and hacks. Recently, he was involved in the discovery of databases online containing data on more than three million Hello Kitty customers, while in late December he uncovered a database of 191 million U.S. voters.

Last month he found an open database belonging to MacKeeper that included data on 13 million users, which was hashed with the outdated MD5 algorithm, though the company said at the time that it is upgrading to the SHA512 algorithm.

“I have come across about 80 open, unauthenticated, and totally available databases that should not be published that way,” said Vickery. It’s a simple mistake that can be made, according to researcher, but can have disastrous results if private data is freely leaked online.

He recommended that most staff in IT need to be aware of the IP addresses and servers they use and see if they can be accessed through their home PCs outside of the office. “That’s really simple, really easy, but that’ll find almost a 100 per cent of the vulnerabilities that I found. If you can reach it from your home, then anybody in the world can do that,” he said.

This year will see a greater focus on strengthening MacKeeper’s security posture through security audits and “anticipating any vulnerabilities that may arise,” added Alexander Kernishniuk, CEO of MacKeeper.

“As a member of the Online Trust Alliance, our company is committed to providing security and privacy for our users. Our partnership with Chris Vickery is a major step towards establishing a solid analytical and security platform to help our company and others to avoid external threats.”


As deaf gamers speak up, game studios are finally listening to those who can’t

Using social media, personal blogs and Twitch, a small group of deaf and hard-of-hearing players have been working to make their voices heard and improve accessibility in the gaming industry.
Social Media

Tumblr promises it fixed a bug that left user data exposed

A bug on blogging site Tumblr left user data exposed. The company says that once it learned of the flaw, it acted quickly to fix it, adding that it's confident no data linked to its users' accounts was stolen.

Hinge's new feature wants to know who you've gone out on dates with

With its new "We Met" feature, Hinge wants to learn how your dates are going with matches in its app. That way, it can inject the information into its algorithm to provide future recommendations that better suit its users' preferences.

Was your Facebook account hacked in the latest breach? Here’s how to find out

Facebook now reports that its latest data breach affected only 30 million users, down from an initial estimate of 50 million accounts. You can also find out if hackers had accessed your account by visiting a dedicated portal.

Feed your fandom: These are the best YouTube channels for sports lovers

If you're a cable cutter who still wants to enjoy quality sports highlights and analysis, YouTube is the place to go. There are plenty of great sports-centric channels on YouTube, each of which provides great highlights and top-shelf…

Adobe Premiere Rush CC is the cloud-based video editing app you've been waiting for

On stage at Adobe MAX 2018, Adobe announced its cloud-centric, social video-editing application, Adobe Premiere Rush CC. We took some time to put it through its paces to see what it offers, how it works, and what's missing.

Adobe’s craziest new tools animate photos, convert recordings to music in a click

Adobe shared a glimpse behind the scenes at what's next and the Creative Cloud future is filled with crazy A.I.-powered tools, moving stills, and animation reacting to real-time tweets.
Social Media

YouTube is back after crashing for users around the world

It's rare to see YouTube suffer serious issues, but the site went down around the world for a period of time on October 16. It's back now, and we can confirm it's loading normally on desktop and mobile.

Winamp eyes big comeback in 2019 with podcast, streaming support

Classic audio player Winamp is getting a major overhaul in 2019 that's designed to bring it up-to-date and make it competitive with the likes of Apple Music, Amazon Music, Spotify, Audible, and more, all in one go.

Is the Pixelbook 2 still happening? Here's everything we know so far

What will the Pixelbook 2 be like? Has the Pixel Slate taken its place? Google hasn't announced it, but thanks to rumors and leaks, we think we have a pretty good idea of what the potential new flagship Chromebook will be like.

Adobe MAX 2018: What it is, why it matters, and what to expect

Each year, Adobe uses its Adobe MAX conference to show off its latest apps, technologies, and tools to help simplify and improve the workflow of creatives the world over. Here's what you should expect from this year's conference.

Problems with Microsoft’s Windows October 2018 Update aren’t over yet

Microsoft's Windows 10 October 2018 update is not having a great launch. More than two weeks after its debut and Microsoft is still putting out fires as new bugs are discovered and there's no sign of its re-release as of yet.

Chrome 70 is now available and won’t automatically log you in to the browser

Google has officially launched Chrome version 70 on Windows Mac and Linux. The update introduces some new Progressive Web App integrations on Windows 10 and also tweaks the much controversial auto login with Google Account feature.

Corsair’s latest SSD boasts extremely fast speeds at a more affordable price

Despite matching and besting the performance of competing solid-state drives from Samsung and WD, the Corsair Force Series MP510 comes in at a much more affordable price. Corsair boasts extremely fast read and write speeds.