Important: BreachAware does not operate under any other brand name and will never provide unauthorised access to compromised credentials. We ask our users to beware of illegitimate websites imitating BreachAware.

Global News Feed

POPULAR CYBERSECURITY PUBLICATIONS
2020-09-29 17:16:00 UTC
ThreatPost
ThreatPost
The Network Perimeter: This Time, It’s Personal

Botnets and IoT devices are forming a perfect storm for IT staff wrestling with WFH employee security.

InfoSec Insider IoT Malware Aamir Lakhani Advice Botnet Fortinet Gh0st Home Firewalls Infosec Insider Internet Of Things It Staff Mirai Network Perimeter Remote Work Wfh Work From Home Zero Trust
2020-09-29 15:33:00 UTC
ThreatPost
ThreatPost
Las Vegas Students’ Personal Data Leaked, Post-Ransomware Attack

A researcher said he discovered an open data cache with names, grades, birthdates and more, after the Clark County School District refused to pay the ransom.

Government Hacks Malware Clark County Cyberattack Data Leak Extortion Las Vegas Leaked Online Official Statement Personal Data Public Schools Ransom Ransomware School District Student Data
2020-09-29 15:14:00 UTC
HackRead
HackRead
Two major flight tracking services hit by crippling cyberattacks

By Waqas

It is still unclear who is behind these cyberattacks however both Flightradar24 and PlaneFinder suffered major service disruption after the attacks.

This is a post from HackRead.com Read the original post: Two major flight tracking services hit by crippling cyberattacks

Security Aviation Cyber Attack Hacking PlaneFinder Technology
2020-09-29 14:30:00 UTC
Dark Reading
Dark Reading
State-Sponsored Hacking Groups Increasingly Use Cloud & Open Source Infrastructure

Microsoft shuts down Azure Active Directory instances used by attackers to evade detection and warns that the use of open source tools by espionage groups is growing.

2020-09-29 14:30:00 UTC
Dark Reading
Dark Reading
State-Sponsored Groups Increasingly Use Cloud & Open Source Infrastructure

Microsoft shuts down Azure Active Directory instances used by attackers to evade detection and warns that the use of open source tools by espionage groups is growing.

2020-09-29 14:28:00 UTC
The Daily Swig
The Daily Swig
Flaw in Medium Partner Program allowed attackers to steal writers’ earnings

Publishing platform’s failure to verify session cookies resulted in ‘easy to exploit’ vulnerability

2020-09-29 13:33:00 UTC
The Daily Swig
The Daily Swig
Prototype pollution vulnerability left bug bounty platform HackerOne open to attack

Bug discovered in third-party video marketing platform

2020-09-29 12:00:00 UTC
ThreatPost
ThreatPost
Telehealth Poll: How Risky Are Remote Doctor Visits?

Threatpost's latest poll probes telehealth security risks and asks for IT cures.

Cloud Security Critical Infrastructure Hacks IoT Web Security Best IT Practices Challenges Patient Data Security Poll Remote Doctor Visits Security Risks Telehealth Telemed
2020-09-29 10:35:00 UTC
The Daily Swig
The Daily Swig
Collision avoidance: OpenSSH lays out plans to ditch aging SHA-1 hashing algorithm

Security shortcomings have become too severe to ignore

2020-09-28 22:40:00 UTC
HackRead
HackRead
Fashion retailer BrandBQ exposes 1 TB of customers, contractors data

By Sudais Asif

The database was hosted on a misconfigured Elasticsearch server.

This is a post from HackRead.com Read the original post: Fashion retailer BrandBQ exposes 1 TB of customers, contractors data

Leaks Security Breach Data Database ElasticSearch LEAKS Poland Privacy Security

BreachAware Insight

THE LATEST CURATED INTEL FROM OUR RESEARCH CENTRE

Listen to our podcast, where Andrew, the visionary CEO of BreachAware, sits down with unsung heroes of the cyber security industry. Get ready to uncover the stories and insights of industry trailblazers you might not have heard of before, as they share their experiences, opinions, and insider intel. But beware, it's not all serious talk—expect a healthy dose of humour (and the odd cussing) sprinkled throughout the conversation.

Point of View

OUR TAKE ON TRENDING STORIES
February 2024
By SUE DENIM
The Truth Behind "The Xun" Repository Bombshell.
Well, well, well, it seems the digital waters are getting murkier by the day. A mysterious GitHub user by the name of I-SOON recently made their grand entrance onto the coding scene, dropping a repository bombshell titled "The Truth Behind an Xun." Inside? Oh, just a casual 200 megabytes of top-secret intel about a Chinese cybersecurity company. Talk about spilling the digital tea!

This treasur...

Weekly Summary

SPOTLIGHT, VULNERABILITY CHAT & PRIVACY HEADLINES
25 March 2024
BREACHAWARE HQ

A total of 24 breaches were found and analysed resulting in 87,916,303 leaked accounts containing a total of 21 different data types. The breaches found publicly and freely available included AT&T Division, US Consumer Opt In Records, Gosuslugi [2], Kava CasinoLife Poker and Stealer Log 0438