Important: BreachAware does not operate under any other brand name and will never provide unauthorised access to compromised credentials. We ask our users to beware of illegitimate websites imitating BreachAware.

Infosec News Feed

An aggregated list of cybersecurity publications
2022-08-02 14:00:00 UTC
Dark Reading
Dark Reading
5 Steps to Becoming Secure by Design in the Face of Evolving Cyber Threats

From adopting zero-trust security models to dynamic environments to operating under an "assumed breach" mentality, here are ways IT departments can reduce vulnerabilities as they move deliberately to become more secure.

2022-08-02 13:53:00 UTC
Dark Reading
Dark Reading
CREST Defensible Penetration Test Released

CREST provides commercially defensible scoping, delivery, and sign-off recommendations for penetration tests.

2022-08-01 20:47:00 UTC
Dark Reading
Dark Reading
DoJ: Foreign Adversaries Breach US Federal Court Records

A Justice Department official testifies to a House committee that the cyberattack is a "significant concern."

2022-08-01 19:36:00 UTC
Dark Reading
Dark Reading
Ransomware Hit on European Pipeline & Energy Supplier Encevo Linked to BlackCat

Customers across several European countries are urged to update credentials in the wake of the attack that affected a gas-pipeline operator and power company.

2022-08-01 19:08:00 UTC
HackRead
HackRead
New DawDropper Malware Targeting Android Devices via Play Store

By Waqas

According to Trend Micro researchers, the DawDropper aims at stealing user data, in particular from banking apps on…

This is a post from HackRead.com Read the original post: New DawDropper Malware Targeting Android Devices via Play Store

Security Android Malware Banking DawDropper Google Play Store Scam Security TROJAN
2022-08-01 18:57:00 UTC
Dark Reading
Dark Reading
Credential Canaries Create Minefield for Attackers

Canary tokens — also known as honey tokens — force attackers to second-guess their potential good fortune when they come across user and application secrets.

2022-08-01 17:42:00 UTC
Dark Reading
Dark Reading
Chromium Browsers Allow Data Exfiltration via Bookmark Syncing

"Bruggling" emerges as a novel technique for pilfering data out from a compromised environment — or for sneaking in malicious code and attack tools.

2022-08-01 16:55:00 UTC
Naked Security | Sophos
Naked Security | Sophos
GnuTLS patches memory mismanagement bug – update now!

GnuTLS may well be the most widespread cryptographic toolkit you've never heard of. Learn more...

Cryptography Vulnerability CVE-2022-2509 Double-free Gnutls Heartbleed
2022-08-01 16:41:00 UTC
Dark Reading
Dark Reading
Name That Edge Toon: Up a Tree

Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card.

2022-08-01 15:36:00 UTC
The Daily Swig
The Daily Swig
‘You get respect for owning what happened’ – SolarWinds’ CISO on the legacy and lessons of Sunburst

Security chief counts new build system and greater intel sharing among positive legacies of watershed cyber-attack