Important: BreachAware does not operate under any other brand name and will never provide unauthorised access to compromised credentials. We ask our users to beware of illegitimate websites imitating BreachAware.

Global News Feed

POPULAR CYBERSECURITY PUBLICATIONS
2020-09-14 16:23:00 UTC
ThreatPost
ThreatPost
TikTok Fixes Flaws That Opened Android App to Compromise

The flaws are disclosed as Oracle reportedly partners with TikTok as concerns in the U.S. over spying continue.

Mobile Security Vulnerabilities Android App Privacy App Security Arbitrary Code Execution Data Theft Google Play Mobile App Tiktok Tiktok App Update
2020-09-14 16:01:00 UTC
ThreatPost
ThreatPost
Magecart Attack Impacts More Than 10K Online Shoppers

Close to 2,000 e-commerce sites were infected over the weekend with a payment-card skimmer, maybe the result of a zero-day exploit.

Hacks Malware Vulnerabilities Web Security E-commerce Sites Hacked Large Campaign Magecart Magento Online Shoppers Payment Card Skimmer Sansec Stolen Credit Cards Zero Day Exploit
2020-09-14 15:52:00 UTC
The Daily Swig
The Daily Swig
Vulnerability in WordPress email marketing plugin patched

Spoofing risk quashed

2020-09-14 15:45:00 UTC
Dark Reading
Dark Reading
Virginia's Largest School System Hit With Ransomware

Fairfax County Public Schools has launched an investigation following a ransomware attack on some of its technology systems.

2020-09-14 14:43:00 UTC
The Daily Swig
The Daily Swig
ModSecurity maintainers contest denial-of-service vulnerability claims

Core Rule Set developers say high-impact bug was introduced via undocumented changes to open source WAF

2020-09-14 13:43:00 UTC
The Daily Swig
The Daily Swig
Internal Facebook systems exposed via unpatched Apache library

Orange Tsai hacks the social media giant – again

2020-09-14 13:30:00 UTC
Dark Reading
Dark Reading
More Printers Could Mean Security Problems for Home-Bound Workers

Tricked-out home offices have led to an influx in printers, many of which have not been set up securely, leaving workers and their companies vulnerable.

2020-09-14 11:17:00 UTC
HackRead
HackRead
Database mess up leaks 882 GB of ecommerce & dating sites data

By Sudais Asif

A misconfigured Elasticsearch server is responsible for exposing data amounting to more than 370 million records.

This is a post from HackRead.com Read the original post: Database mess up leaks 882 GB of ecommerce & dating sites data

Security Breach Datadase Dating ElasticSearch LEAKS Mailfire Privacy
2020-09-14 10:36:00 UTC
Naked Security | Sophos
Naked Security | Sophos
Naked Security Live – “Should you worry about your wallpaper?”

Naked Security Live - here's the recorded version of our latest video. Enjoy.

Video Naked Security Live
2020-09-13 16:50:00 UTC
HackRead
HackRead
Private and order details of nearly 100k Razer customers leaked online

By Waqas

A misconfigured Elasticsearch server is responsible for exposing the personal details of a large number of Razer customers.

This is a post from HackRead.com Read the original post: Private and order details of nearly 100k Razer customers leaked online

Security Breach Database ElasticSearch LEAKS Privacy Razer Security

BreachAware Insight

THE LATEST CURATED INTEL FROM OUR RESEARCH CENTRE

Listen to our podcast, where Andrew, the visionary CEO of BreachAware, sits down with unsung heroes of the cyber security industry. Get ready to uncover the stories and insights of industry trailblazers you might not have heard of before, as they share their experiences, opinions, and insider intel. But beware, it's not all serious talk—expect a healthy dose of humour (and the odd cussing) sprinkled throughout the conversation.

Point of View

OUR TAKE ON TRENDING STORIES
February 2024
By SUE DENIM
The Truth Behind "The Xun" Repository Bombshell.
Well, well, well, it seems the digital waters are getting murkier by the day. A mysterious GitHub user by the name of I-SOON recently made their grand entrance onto the coding scene, dropping a repository bombshell titled "The Truth Behind an Xun." Inside? Oh, just a casual 200 megabytes of top-secret intel about a Chinese cybersecurity company. Talk about spilling the digital tea!

This treasur...

Weekly Summary

SPOTLIGHT, VULNERABILITY CHAT & PRIVACY HEADLINES
25 March 2024
BREACHAWARE HQ

A total of 24 breaches were found and analysed resulting in 87,916,303 leaked accounts containing a total of 21 different data types. The breaches found publicly and freely available included AT&T Division, US Consumer Opt In Records, Gosuslugi [2], Kava CasinoLife Poker and Stealer Log 0438