Important: BreachAware does not operate under any other brand name and will never provide unauthorised access to compromised credentials. We ask our users to beware of illegitimate websites imitating BreachAware.

Global News Feed

POPULAR CYBERSECURITY PUBLICATIONS
2019-06-19 12:57:00 UTC
ThreatPost
ThreatPost
Mozilla Patches Firefox Critical Flaw Under Active Attack

Mozilla released a new update for Firefox after discovering a critical flaw under active attack.

Vulnerabilities Web Security Critical Flaw Cross Site Scripting Firefox Firefox 67.0.3 Firefox ESR 60.7.1 Mozilla Mozilla Firefox Patch Remote Code Execution Zero Day
2019-06-19 12:26:00 UTC
Naked Security | Sophos
Naked Security | Sophos
Netflix researcher spots TCP SACK flaws in Linux and FreeBSD

Three vulnerabilities in the FreeBSD and Linux kernels could allow attackers to induce a denial-of-service by clogging networking I/O.

Linux Security Threats Vulnerability AWS Debian Denial Of Service Freebsd Kernel Bug Linux Kernal Netflix Patching Red Hat SACK Selective Acknowledgment Suse Ubuntu
2019-06-19 12:23:00 UTC
Naked Security | Sophos
Naked Security | Sophos
Pass the salt! Popular CMSs aren’t securing passwords properly

A group of researchers has discovered that many of the web's most popular content management systems are using obsolete algorithms to protect their users' passwords.

Security Threats CMS Content Management Systems Hashed Passwords Hashing MD5 Password Security Salting Sha-1 Unsalted Passwords
2019-06-19 12:02:00 UTC
The Daily Swig
The Daily Swig
Mozilla releases fix for high-impact Firefox zero-day

Critical vulnerability in browser version 67.0.3

2019-06-19 12:00:00 UTC
Dark Reading
Dark Reading
Insecure Home IoT Devices a Clear and Present Danger to Corporate Security

Avast-sponsored study shows wide prevalence of IoT devices, many with weak credentials and other security vulnerabilities.

2019-06-19 10:48:00 UTC
Naked Security | Sophos
Naked Security | Sophos
Hospitals are being suffocated by robocalls

Some pretend to be hospitals to get patients' payment data. Others pose as the goverment and try to get confidential data from hospitals.

Law & Order Call Scam Emergency Lines Hospitals Nuisance Calls Robocall Legislation Robocaller Legislation Robocalls Scam Calls Spam Calls
2019-06-19 10:07:00 UTC
Naked Security | Sophos
Naked Security | Sophos
Millions of Venmo transactions scraped (again)

Not much has changed since a year ago, when a bot was tweeting out publicly visible Venmo "drug" deals from the public-by-default company.

Mobile Privacy Data Scraping Github Public API Venmo
2019-06-19 09:24:00 UTC
The Daily Swig
The Daily Swig
Google study aims to improve decision making behind web feature deprecation

The appliance of science

2019-06-18 19:34:00 UTC
ThreatPost
ThreatPost
Consumers Urged to Junk Insecure IoT Devices

A security researcher who disclosed flaws impacting 2 million IoT devices in April - and has yet to see a patch or even hear back from the manufacturers contacted - is sounding off on the dire state of IoT security.

IoT Podcasts Connected Security Cameras Disclosure Internet Of Things P2P Peer To Peer Communication Podcast
2019-06-18 18:59:00 UTC
HackRead
HackRead
New Android malware bypass 2FA & steal one-time passwords

By Uzair Amir

These apps were designed to pass as BtcTurk, a Turkish cryptocurrency exchange. Researcher Lukas Stefanko at the Slovakian security firm ESET has discovered Android malware in new apps that can bypass the SMS-based two-factor authentication (2FA) without using SMS permissions. The malicious apps are available on the very reliable platform Google Play Store. The malware […]

This is a post from HackRead.com Read the original post: New Android malware bypass 2FA & steal one-time passwords

Malware Security 2FA Android Cryptocurrency Fraud Google Play Store Scam Security TURKEY

BreachAware Insight

THE LATEST CURATED INTEL FROM OUR RESEARCH CENTRE
BreachAware Podcast

Listen to our podcast, where Andrew, the visionary CEO of BreachAware, sits down with unsung heroes of the cyber security industry. Get ready to uncover the stories and insights of industry trailblazers you might not have heard of before, as they share their experiences, opinions, and insider intel. But beware, it's not all serious talk—expect a healthy dose of humour (and the odd cussing) sprinkled throughout the conversation.

Amazon Music Apple Podcasts Spotify Podcast BreachAware YouTube Channel

Point of View

OUR TAKE ON TRENDING STORIES

Weekly Summary

SPOTLIGHT, VULNERABILITY CHAT & PRIVACY HEADLINES