The actual tally of stolen user accounts from the hack Yahoo experienced could be much larger than 500 million, according …
Social Site Is Leaking Millions Of Plaintext Passwords
A social hangout website for teenage girls has sprung a leak that’s exposing plaintext passwords protecting as many as 5.5 …
40 Percent of Organizations Store Admin Passwords In Word Documents
According to the results of a recent survey of 750 IT security decision makers worldwide, 40 percent of organizations store …
Yahoo Confirms Massive Data Breach, 500 Million Users Impacted
Yahoo said it believes that at least 500 million user account credentials were stolen, which would make it the biggest …
ClixSense Suffers Massive Data Breach, 6.6 Million Users Compromised
ClixSense, a site which pays users to view ads and take surveys, was the victim of a massive data breach …
FBI, Apple battle may leave lasting legacy
The FBI may have backed off from its demand that Apple build a backdoor to an iPhone security mechanism, for …
New Cloud Attack Takes Full Control of Virtual Machines With Little Effort
Researchers have unveiled the most unsettling attack yet resulting from the so-called Rowhammer exploit, which flips individual bits in computer …
Staff Breach At OneLogin Exposes Password Storage Feature
Enterprise access management firm OneLogin has suffered an embarrassing breach tied to a single employee’s credentials being compromised. OneLogin on …
After Breaches At Other Services, Spotify Is Resetting Users’ Passwords
Spotify is asking its users to reset their passwords. The popular music streaming service is “actively resetting a number of …
Dropbox employee’s password reuse led to theft of 60M+ user credentials
Hackers have stolen over 60 million account details for online cloud storage platform Dropbox. Although the accounts were stolen during …
Google Bug Allows Credential Theft at Login
Attackers can add an arbitrary page to the end of a Google login flow that can steal users’ credentials, or …
Xen Vulnerability Allows Hackers To Escape OS VM And Own the Host (Amazon AWS, Rackspace, IBM affected)
A freshly uncovered bug in the Xen virtualization hypervisor could potentially allow guests to escalate their privileges until they have …
Physical Key Extraction Attacks using a microphone
Researchers have managed to cheaply harvest 4,096-bit encryption keys from distances of around 10 metres (33 feet) using a microphone. …
Google and Microsoft shortened URLs make it easy to spy on people
Cornell Tech’s Martin Georgiev and Vitaly Shmatikov on Thursday published the results of an 18-month study that found the 5- …
Hackers held 7 million Dropbox passwords ransom
Hackers are threatening a major breach in Dropbox security, claiming to have stolen the login details of almost 7 million …
Dropbox and Box leak files
“Box and Dropbox have fallen victim to an exploit that allows privately shared files to be read, due to poor …
Google Drive was leaking private data
A disturbing privacy problem has been discovered in Google Drive which could have resulted in sensitive personal or corporate information …
How to easily steal crypto keys from another VM in the cloud
Piercing a key defense found in cloud environments such as Amazon’s EC2 service, scientists have can extract private cryptographic keys …
Public cloud compromise: cross-VM RSA key recovery in minutes.
A full-fledged attack that exploits VM leakages to recover RSA keys from a cloud-hosted VM instance. This work reaffirms the …
Hypervisor wiretap feature can leak data from the cloud
Bitdefender has discovered that encrypted communications can be decrypted in real-time using a technique that has virtually zero footprint and …
Cloud hacking trick allows undetectable changes to VM memory
Researchers have uncovered a new attack technique which can alter the memory of virtual machines in the cloud. The team …
- Page 2 of 2
- 1
- 2