Important: BreachAware does not operate under any other brand name and will never provide unauthorised access to compromised credentials. We ask our users to beware of illegitimate websites imitating BreachAware.

Global News Feed

POPULAR CYBERSECURITY PUBLICATIONS
2018-09-06 15:51:00 UTC
Krebs on Security
Krebs on Security
Leader of DDoS-for-Hire Gang Pleads Guilty to Bomb Threats

A 19-year-old man from the United Kingdom who headed a cybercriminal group whose motto was "Feds Can't Touch Us" pleaded guilty this week to making bomb threats against thousands of schools.

On Aug. 31, officers with the U.K.'s National Crime Agency (NCA) arrested Hertfordshire resident George Duke-Cohan, who admitted making bomb threats to thousands of schools and a United Airlines flight traveling from the U.K. to San Francisco last month.

Ne'er-Do-Well News George Duke-Cohan Lizard Squad National Crime Agency NCA Protonmail
2018-09-06 12:43:00 UTC
The Daily Swig
The Daily Swig
Russian-linked Silence hackers ‘are cybersecurity professionals’

New report claims pen testers carried out banking attacks.

2018-09-05 22:55:00 UTC
Krebs on Security
Krebs on Security
Browser Extensions: Are They Worth the Risk?

Popular file-sharing site Mega.nz is warning users that cybercriminals hacked its browser extension for Google Chrome so that any usernames and passwords submitted through the browser were copied and forwarded to a rogue server in Ukraine. This attack serves as a fresh reminder that legitimate browser extensions can and periodically do fall into the wrong hands, and that it makes good security sense to limit your exposure to such attacks by getting rid of extensions that are no longer useful or actively maintained by developers.

A Little Sunshine Latest Warnings Add-ons Browser Extensions Chrome Firefox Google Mega.nz Three Rules Of Online Security
2018-09-05 16:18:00 UTC
The Daily Swig
The Daily Swig
Reflected response: Dangerous ACME implementations result in XSS

Request encryption, get script injection.

2018-09-05 14:38:00 UTC
The Daily Swig
The Daily Swig
No cracking required: Browser flaw permits unauthorized WiFi access

Saved credentials and HTTP are a deadly combination, researchers warn.

2018-09-05 14:04:00 UTC
Ars Technica
Ars Technica
Google wants to get rid of URLs but doesn’t know what to use instead

Their complexity makes them a security hazard; their ubiquity makes replacement nigh impossible.

Tech Browsers Google Security Urls Web
2018-09-04 17:22:00 UTC
Krebs on Security
Krebs on Security
For 2nd Time in 3 Years, Mobile Spyware Maker mSpy Leaks Millions of Sensitive Records

mSpy, the makers of a software-as-a-service product that claims to help more than a million paying customers spy on the mobile devices of their kids and partners, has leaked millions of sensitive records online, including passwords, call logs, text messages, contacts, notes and location data secretly collected from phones running the stealthy spyware.

Less than a week ago, security researcher Nitish Shah directed KrebsOnSecurity to an open database on the Web that allowed anyone to query up-to-the-minute mSpy records for both customer transactions at mSpy's site and for mobile phone data collected by mSpy's software. The database required no authentication.

Data Breaches Apple ICloud BBC Facebook IPhone MSpy Breach Nitish Shah WhatsApp
2018-09-04 15:27:00 UTC
The Daily Swig
The Daily Swig
Access denied: How are the big tech players protecting our digital rights?

The world’s major tech companies have similar policies in handling our online accounts, even under threat of law or after our death.

2018-09-04 10:57:00 UTC
The Daily Swig
The Daily Swig
Bad ads: Google clamps down on tech support scammers

Search giant working on verification program for legitimate providers.

2018-09-03 15:20:00 UTC
The Daily Swig
The Daily Swig
Hackers of the world unite at EMF 2018

2,500 like-minded people descend on South West England to ‘hack the planet’.

BreachAware Insight

THE LATEST CURATED INTEL FROM OUR RESEARCH CENTRE
BreachAware Podcast

Listen to our podcast, where Andrew, the visionary CEO of BreachAware, sits down with unsung heroes of the cyber security industry. Get ready to uncover the stories and insights of industry trailblazers you might not have heard of before, as they share their experiences, opinions, and insider intel. But beware, it's not all serious talk—expect a healthy dose of humour (and the odd cussing) sprinkled throughout the conversation.

Amazon Music Apple Podcasts Spotify Podcast BreachAware YouTube Channel

Weekly Summary

SPOTLIGHT, VULNERABILITY CHAT & PRIVACY HEADLINES
18 November 2024
BREACHAWARE HQ
Spider Breach Exposure Monitoring