Important: BreachAware does not operate under any other brand name and will never provide unauthorised access to compromised credentials. We ask our users to beware of illegitimate websites imitating BreachAware.

Global News Feed

POPULAR CYBERSECURITY PUBLICATIONS
2019-11-11 18:13:00 UTC
ThreatPost
ThreatPost
ThreatList: Data Breaches Batter Stock Prices at Public Companies, For Months

When it comes to bouncing back, long-term impact to share prices from a data breach incident is significant on average for large companies.

Breach Comparitech Data Breach Facebook Finance Healthcare Hospital Impact Intermed Maine Public Companies Share Performance Social Media Stock Price Study
2019-11-11 17:33:00 UTC
Krebs on Security
Krebs on Security
Retailer Orvis.com Leaked Hundreds of Internal Passwords on Pastebin

Orvis, a Vermont-based retailer that specializes in high-end fly fishing equipment and other sporting goods, leaked hundreds of internal passwords on Pastebin.com for several weeks last month, exposing credentials the company used to manage everything from firewalls and routers to administrator accounts and database servers, KrebsOnSecurity has learned. Orvis says the exposure was inadvertent, and that many of the credentials were already expired.

A Little Sunshine Alex Holden GitHub Hold Security Orvis Password Exposure Orvis.com Pastebin Tucker Kimball
2019-11-11 15:58:00 UTC
Naked Security | Sophos
Naked Security | Sophos
Microsoft urges us to patch after partially effective BlueKeep attack

Microsoft has urged people to patch their Windows systems following the appearance of mass BlueKeep exploits just over a week ago.

Microsoft Security Threats Vulnerability BlueKeep CVE-2019-0708 Exploits Vulnerability Windows
2019-11-11 15:22:00 UTC
ThreatPost
ThreatPost
Ransomware Attack Downs Hosting Service SmarterASP.NET

SmarterASP.NET said that it is in the middle of recovering accounts downed by the ransomware attack.

Hacks Web Security Cyberattack Hack Hosting Service Online Ransomware Ransomware Attack SmarterASP.NET Web Hosting Service
2019-11-11 15:00:00 UTC
Dark Reading
Dark Reading
5 Security Processes You Shouldn't Overlook During M&A

Security needs to be a central element of due diligence if a merger or acquisition is to succeed

2019-11-11 14:04:00 UTC
The Daily Swig
The Daily Swig
WordPress ‘coming soon mode’ plugin developers fix raft of security bugs

IgniteUp users are being urged to update to version 3.4.1 Developers behind a popular WordPress plugin that’s used to display ‘coming soon’ and maintenance mode pages have addressed a range of securit

2019-11-11 13:01:00 UTC
ThreatPost
ThreatPost
Encrypted Emails on macOS Found Stored in Unprotected Way

Apple is investigating an issue raised by a Mac specialist discovered to be storing emails that are supposed to be S/MIME-encrypted as readable files.

Vulnerabilities Apple Apple Mail Data Privacy Data Security Database Email Encryption MacOS S/mime Security Siri
2019-11-11 12:13:00 UTC
Naked Security | Sophos
Naked Security | Sophos
Adobe fixes SDK weakness affecting mobile apps

Researchers noticed that the main app configuration file, ADBMobileConfig.json, contained settings that could lead to security problems.

Adobe Security Threats Vulnerability Mobile Mobile Apps Nightwatch Cybersecurity SDK Software Development Kit

BreachAware Insight

THE LATEST CURATED INTEL FROM OUR RESEARCH CENTRE

Listen to our podcast, where Andrew, the visionary CEO of BreachAware, sits down with unsung heroes of the cyber security industry. Get ready to uncover the stories and insights of industry trailblazers you might not have heard of before, as they share their experiences, opinions, and insider intel. But beware, it's not all serious talk—expect a healthy dose of humour (and the odd cussing) sprinkled throughout the conversation.

Point of View

OUR TAKE ON TRENDING STORIES
February 2024
By SUE DENIM
The Truth Behind "The Xun" Repository Bombshell.
Well, well, well, it seems the digital waters are getting murkier by the day. A mysterious GitHub user by the name of I-SOON recently made their grand entrance onto the coding scene, dropping a repository bombshell titled "The Truth Behind an Xun." Inside? Oh, just a casual 200 megabytes of top-secret intel about a Chinese cybersecurity company. Talk about spilling the digital tea!

This treasur...

Weekly Summary

SPOTLIGHT, VULNERABILITY CHAT & PRIVACY HEADLINES
25 March 2024
BREACHAWARE HQ

A total of 24 breaches were found and analysed resulting in 87,916,303 leaked accounts containing a total of 21 different data types. The breaches found publicly and freely available included AT&T Division, US Consumer Opt In Records, Gosuslugi [2], Kava CasinoLife Poker and Stealer Log 0438