Important: BreachAware does not operate under any other brand name and will never provide unauthorised access to compromised credentials. We ask our users to beware of illegitimate websites imitating BreachAware.

Infosec News Feed

An aggregated list of cybersecurity publications
2022-08-03 13:52:00 UTC
Dark Reading
Dark Reading
American Express, Snapchat Open-Redirect Vulnerabilities Exploited in Phishing Scheme

Phishing operators are taking advantage of security bugs in the Amex and Snapchat websites (the latter is unpatched) to steer victims to phishing pages looking to harvest Google and Microsoft logins.

2022-08-02 23:02:00 UTC
ThreatPost
ThreatPost
Universities Put Email Users at Cyber Risk

DMARC analysis by Proofpoint shows that institutions in the U.S. have among some of the poorest protections to prevent domain spoofing and lack protections to block fraudulent emails.

Vulnerabilities Web Security
2022-08-02 22:45:00 UTC
HackRead
HackRead
Taiwanese President and Top Govt Sites Hit by DDoS Attacks Amid Pelosi visit

By Waqas

The DDoS attacks also targeted the country’s largest airport, the Defence and Foreign Ministry. As US House Speaker…

This is a post from HackRead.com Read the original post: Taiwanese President and Top Govt Sites Hit by DDoS Attacks Amid Pelosi visit

Security Cyber Attacks China Cyber Attack Cyber War DDOS Security Taiwan
2022-08-02 22:05:00 UTC
Dark Reading
Dark Reading
Thousands of Mobile Apps Leaking Twitter API Keys

New finding comes amid report of overall surge in threats targeting mobile and IoT devices over the past year.

2022-08-02 22:03:00 UTC
Dark Reading
Dark Reading
Large Language AI Models Have Real Security Benefits

Complex neural networks, including GPT-3, can deliver useful cybersecurity capabilities such as explaining malware and quickly classifying websites, researchers find.

2022-08-02 21:04:00 UTC
Dark Reading
Dark Reading
Massive New Phishing Campaign Targets Microsoft Email Service Users

The campaign uses adversary-in-the-middle techniques to bypass multifactor authentication, evade detection.

2022-08-02 20:30:00 UTC
Dark Reading
Dark Reading
From Babuk Source Code to Darkside Custom Listings — Exposing a Thriving Ransomware Marketplace on the Dark Web

Venafi investigation of 35 million Dark Web URLs shows macro-enabled ransomware widely available at bargain prices.

2022-08-02 20:04:00 UTC
Dark Reading
Dark Reading
Manufacturing Sector in 2022 Is More Vulnerable to Account Compromise and Supply Chain Attacks in the Cloud than Other Verticals

Netwrix study reveals that manufacturing organizations experienced these types of attacks more often than any other industry surveyed.

2022-08-02 19:31:00 UTC
Krebs on Security
Krebs on Security
No SOCKS, No Shoes, No Malware Proxy Services!

With the recent demise of several popular "proxy" services that let cybercriminals route their malicious traffic through hacked PCs, there is now something of a supply chain crisis gripping the underbelly of the Internet. Compounding the problem, several remaining malware-based proxy services have chosen to block new registrations to avoid swamping their networks with a sudden influx of customers.

A Little Sunshine Breadcrumbs The Coming Storm Web Fraud 2.0 Alexandr Smolyaninov Angry Coders Dmitry Chepurko Ip-score Kc-shoes Michdomain@gmail.com Oleg Iskushnykh SOCKS Proxy SocksEscort
2022-08-02 19:31:00 UTC
Dark Reading
Dark Reading
Axis Raises the Bar With Modern-Day ZTNA Service that Boasts Hyper-Intelligence, Simplicity, and 350 Global Edges

Launches industry’s first ZTNA Migration Tool and ZTNA Buyback Program, setting the stage for migration away from ZTNA 1.0.