Hackers collect payment and password info from more than 4,600 sites
Recent supply-chain attacks affecting an open-source web form project and an analytics service allowed hackers to collect the payment and password info from more than 4,600 websites. Both attacks involved the spread of malicious code that collected payment and password data from these websites.
Online passwords: Research confirms millions of people are using 123456
A recent study by the U.K.’s National Cyber Security Center (NCSC) that looked at public databases of breached accounts confirms that for many people, simple passwords are still a thing, with 23.2 million accounts globally using “123456” -- the most common string on the list.
Federal jury convicts malware creators of hijacking 400,000 computers
A federal jury has convicted two men from Romania of using malware to commit a laundry list of cyber crimes which resulted in the loss of millions of dollars and the hijacking of 400,000 computers. The men were convicted for a total of 21 criminal charges related to their long-running scheme.
Hackers broke into Outlook.com using worker’s credentials, Microsoft says
Microsoft's web-based email services, including Outlook.com accounts and MSN and Hotmail addresses, were the target of a security beach. Using a customer support agent's credentials, hackers were possibly able to access email addresses and subject lines, but fortunately not their content.
Don’t freak out! Older GPS devices could suffer Y2K-style bug tonight
Remember the Y2K bug? When we worried that our computers would stop working at the turn of the millennium due to two digit dates turning from 99 to 00. That turned out to be just fine, and didn't cause a major problem at all. But experts are warning that a similar bug could affect GPS devices today.
Digital Trends Live: Tesla Model Y, The Missing Link, and good digital hygiene
On episode 89 of Digital Trends Live, we discussed trending topics such as the unveiling of the Tesla Model Y and Google's keynote at the Game Developers Conference. We were also joined by Andrew Rossow to discuss good digital hygiene in the age of online trolling and cyberbullying.
Who should fix Internet of Things cybersecurity? Congress takes a crack at it
While the U.S. government has held a tight rein on security for networked devices like computers and cellphones, a bipartisan groups of legislators is now taking on the issue of cybersecurity for Internet of Things (IoT) devices by introducing a bill that would set new security standards.
A security flaw leaves Ring doorbells and cameras vulnerable to spying
You might think that your security devices are keeping you safe, but they may expose you in another way. Security researchers at Dojo by BullGuard showed a security vulnerability in Amazon's Ring Video Doorbell that allows a hacker to access video and audio and even inject counterfeit video.
After camera hacks, Nest locks customers out until they change their password
In response to a wave of breaches that have hit security cameras, Nest has taken the step of locking people out of their accounts if they believe there may have been a breach. Users will have to set up a new, secure password before they are able to regain access to their account.
Marriott asking guests for data to see if they were victims of the Starwood hack
Marriott has created an online form to help you find out if your data was stolen in the massive Starwood hack that came to light at the end of 2018. But take note, it requires you to submit a bunch of personal details. The massive breach affected more than 300 million guests.
500px reveals almost 15 million users are caught up in security breach
Almost 15 million members of portfolio website 500px have been caught up in a security breach, the company said on Tuesday. The hack occurred in 2018 but was only discovered last week. As a precautionary measure, users are being told to change their 500px password as soon as possible.
A flaw in e-ticket systems could mean a hacker can print your boarding pass
Security researchers have exposed a flaw in the e-ticking system used by several popular global airlines. The vulnerability was discovered in December and involves unsecured check-in emails that can put the personal information of passengers at risk or even allow a hacker to print boarding passes.
Family tormented with racial slurs and taunts through hacked Nest camera
An Illinois family had their Nest security camera turned against them after hackers hijacked the device. The attackers used the two-way microphones in the device to taunt the family and shout racial slurs and managed to hijack the Nest thermostat and turn the temperature up to 90 degrees.
What is phishing? Here’s everything you need to know
What is Phishing? It's something that almost every web user has dealth with at some point while online, but sometimes the attacks are so subtle and well executed you may still not know that you were being targeted. Whether through email spam, faked webpages, or classic social engineering, phishing is commonplace.
Hackers hijack Nest camera, issue fake warning of North Korea missile attack
Security cameras are supposed to keep you safe, but a Nest device owned by a family in Orinda, California was hijacked by hackers. Once they managed to hack the device, the attackers issued a fake warning about an incoming North Korean nuclear missile attack heading toward Los Angeles, Chicago, and Ohio.
Bethesda explains why ‘Fallout 76’ players using secret room are banned
Following a series of bans in Fallout 76 brought on by players entering a secret room in the game, Bethesda has explain exactly why these players' accounts have been temporarily deactivated. An investigation is underway, but it's believed that third-party programs are needed to access the room.
PewDiePie supporters hack printers, hope to boost his subscription numbers
PewDiePie supporters claimed to have hacked thousands of printers worldwide to print messages to ask people to subscribe to the popular YouTube account in an attempt to have it remain the YouTube account with the most subscribers. These same hackers also wish to warn others about having unsecured devices.
PlayStation Classic hacked in less than a week to play games via USB drive
Hackers have already managed to crack the PlayStation Classic, with programs now available to allow users to play additional original PlayStation games on the system via a USB drive. A lack of security measures on the console appears to be responsible for the very quick turnaround.
With 20,000 sites swallowed up, a botnet is eating WordPress alive
Hackers controlling a botnet of over 20,000 infected WordPress sites are attacking other WordPress sites, according to a report from The Defiant Threat Intelligence team. The botnets attempted up generate logins on up to five million logins on legit WordPress websites within the thirty days.
You can edit the PlayStation Classic’s emulator settings with a keyboard
The PlayStation Classic doesn't give you many options when it comes to emulating the 20 games it includes, but one clever user managed to figure out a way to edit the emulator itself. The system is available now for $100 and comes with 20 games from the original PlayStation's library.
Someone is selling a mass-hacking service, leaving your printer exposed
Hackers normally try to take control or manipulate your computer, but internet-connected printers are also at risk. That is all according to a report from Vice, which finds that someone attempted to sell a mass printing service, which could cause your printer to spit out any given message on command.
It’s time to change your password again as Dell reveals attempted hack
Computer giant Dell said on Wednesday, November 28 that it recently spotted an attempt by hackers to steal customer data. The cybercriminals are believed to have gone after personal information, though the firm doesn't believe any credit card information was taken. The investigation is ongoing.
Scammers’ latest phishing attacks are using that little green padlock to fool you
Hackers are now building fake sites with secure HTTPS connections in the hope of fooling users into believing that their phishing website is in fact legitimate. Because these fraudulent sites rely on a secure connection, hackers are able to bypass the security warnings on most browsers.
Sennheiser’s flawed headphone software is a Trojan horse hackers could exploit
Sennheiser may have its own version of Lenovo's Superfish bug on its hands. Though you may not expect headphones to be a cybersecurity risk, Sennheiser's flawed HeadSetup utility could expose your PC to hackers due to weak cryptographic keys that could easily be decrypted by a malicious hacker.
NSA tools are still letting hackers take over unpatched systems
NSA hacking tools stolen more than two years ago are still being used in new and dangerous ways. Hackers are using the tools to go after systems previously protected behind routers, potentially leaving as many as a million PCs around the world vulnerable. Make sure your PC and router are well patched.
USPS fixes online flaw that exposed the data of 60 million customers
The United States Postal Service has patched an online security flaw that allowed anyone with an account at usps.com to view the account details of any of the 60 million people signed up to the service. In some cases, the flaw even allowed for changes to be made to information held by the accounts.
Russian hackers are targeting U.S. emails with phishing malware
Hackers are targeting both U.S. and European email accounts with new phishing malware, according to a new study. Named "Cannon," the malware has been around since October, collecting screenshots and other information from the PCs of unsuspecting victims and sending it back to Russian operatives.
Latest SMS breach could allow hackers access to your online accounts
More than 26 million SMS messages may have been exposed as a result of a security breach. The breach stems from a telecommunication firm not securing its online database, giving potential hackers easy access to text messages, some of which contained two-factor authentication codes and password reset links.
Nearly 700,000 websites are hacked in bid to steal cryptocurrency
Popular web analytics platform Statcounter experienced a breach on November 3, according to research from malware researcher Matthieu Faou. Up to 700,000 websites were targetted in the breach which primarily aimed to steal cryptocurrency through a malicious Javascript script on websites running Statcounter code.
Hackers sold 120 million private Facebook messages, report says
Up to 120 million private Facebook messages were being sold online by hackers this fall. The breach was first discovered in September, and the messages were obtained through unnamed rogue browser extensions which monitored users and mined their information while browsing through the social media website.
Hackers target major airline in data breach affecting nearly 10M customers
A major international airline has been targeted by hackers, with personal data belonging to nearly 10 million of its customers stolen. Cathay Pacific, which operates out of Hong Kong, says that it so far has no evidence that the data has been misused, and is now in the process of contacting those affected.
Is your router vulnerable to attacks? New report says odds aren’t in your favor
A new study from American Consumer Institute shows that 83 percent of routers in the United States are vulnerable to cyberattacks. A majority of those routers have critical security vulnerabilities, primarily due to the lack of firmware updates.
AT&T and Ericsson team up to improve ‘Internet of Things’ security
AT&T and Ericsson have teamed up to combat cybersecurity threats in the IoT world. With a growing number of business implementing connected devices into their day-to-day operations, steps must be taken to safeguard data and prevent malicious attacks from gaining entry into networks.
Newegg was cracked, customer data has leaked, and security is clearly scrambled
Online electronics retailer Newegg has found itself at the heart of an online security breach as the company's payment system was recently breached, giving hackers of the notorious group Magecart potential access to confidential customer data, including credit card information.