The security thread
- Started
- Last post
- 39 Responses
- drgs1
so my Linkedin account has been "pwned"
what are they going to do with my login exactly?
- Your LinkedIn suddenly updates to 'Junior Fry Cook and Waste Management Technician at Kysten Rundt'prophetone
- nothing if you don't use the same email+password everywhere.sted
- if you use the same password for everything then you should be worried.Al_dizzle
- sted2
Today is Tumblr
Hackers Stole 65 Million Passwords From Tumblr, New Analysis Reveals
- Thankfully, I'm not on Tumblr. But yeah, it's pretty scary how many breaches there are.Continuity
- wait for insta :)sted
- Oh the fucking humanityset
- sted0
About the dropbox password change (bit sugarcoated bullshit)
https://www.dropbox.com/help/925…update on the iOS exploit (if you aren't installing shitty apps on your phone or visit useless sites don't worry):
http://arstechnica.com/apple/201…
- sted0
Earlier this week, we detected signs of an attack where access was gained to the Opera sync system. This attack was quickly blocked. Our investigations are ongoing, but we believe some data, including some of our sync users’ passwords and account information, such as login names, may have been compromised.
- sted0
Yahoo
http://www.express.co.uk/life-st…
(sample of the data was confirmed to be real few mins. ago)Telegram
No public source yet.
- sted0
Last.fm
43,570,999 user accounts were breached in a hack of Last.fm that occurred in March of 2012...
The number of passwords and the severity of the hack were not uncovered until today.https://techcrunch.com/2016/09/0…
"The most popular password pulled from the Last.fm database was 123456. " aahah
- sted0
ethereum.org forum
On December 16, we were made aware that someone had recently gained unauthorized access to a database from forum.ethereum.org. We immediately launched a thorough investigation to determine the origin, nature, and scope of this incident. Here is what we know:
- sted0
godaddy,
linode,
linux dedicated servers hacked, details soon.
- sted0
gotoassist hacked, user details with password leaked.
- sted2
Several Sites Including Twitter, Spotify, PayPal, SoundCloud Suffering Outage Dyn DNS Under DDoS Attack
https://www.dynstatus.com/incide…
http://motherboard.vice.com/read…
some say that this is is related to these events:
https://www.schneier.com/blog/ar…
- imbecile0
I thought they shut down...
-
Dear Barnes & Noble Customer,
It is with the greatest regret we inform you that we were made aware on October 10, 2020 that Barnes & Noble had been the victim of a cybersecurity attack, which resulted in unauthorized and unlawful access to certain Barnes & Noble corporate systems.
We write now out of the greatest caution to let you know how this may have exposed some of the information we hold of your personal details.
Firstly, to reassure you, there has been no compromise of payment card or other such financial data. These are encrypted and tokenized and not accessible. The systems impacted, however, did contain your email address and, if supplied by you, your billing and shipping address and telephone number. We currently have no evidence of the exposure of any of this data, but we cannot at this stage rule out the possibility. We give below answers to some frequently asked questions.
We take the security of our IT systems extremely seriously and regret sincerely that this incident has occurred. We know also that it is concerning and inconvenient to receive notices such as this. We greatly appreciate your understanding and thank you for being a Barnes & Noble customer.
Barnes & Noble
FAQ1. Have my payment details been exposed?
No, your payment details have not been exposed. Barnes & Noble uses technology that encrypts all credit cards and at no time is there any unencrypted payment information in any Barnes & Noble system.2. Could a transaction be made without my authorization?
No, no financial information was accessible. It is always encrypted and tokenized.3. Was my email compromised?
No. Your email was not compromised as a result of this attack. However, it is possible that your email address was exposed and, as a result, you may receive unsolicited emails.4. Was any personal information exposed due to the attack?
While we do not know if any personal information was exposed as a result of the attack, we do retain in the impacted systems your billing and shipping addresses, your email address and your telephone number if you have supplied these.5. Do you retain any other information in the impacted systems?
Yes, we also retain your transaction history, meaning purchase information related to the books and other products that you have bought from us.
- sted0
A report by security firm UpGuard's Cyber Risk Team suggests the personal information of almost 62% of the United States' population was leaked as a result of a configuration error by a marketing firm employed by the Republican National Committee (RNC).
- sted0
A game named Valorant, which is currently under development and runs on Windows systems, is being used as bait in a campaign that targets Android devices. In the campaign, YouTube videos are being used to promote what is alleged to be mobile version of the game, available for Android and iOS devices. The videos are complete with fake user reviews and comments. Potential victims are directed to a website that is a spoofed version of the actual Valorant site. Two download links are provided on the spoofed site, one for iOS version, the other for the Android version. If the iOS link is clicked, the user is redirected to an affiliate site. If the Android link is clicked, and the Android device is configured to allow installation of apps outside of Google Play, the fake app will be installed. When the app is executed it imitates the game's loading screen but informs the victim the game needs to be unlocked which requires downloading another two apps. If the infection process is completed and the Android.FakeApp.176 payload is installed, the victim is redirected to the same affiliate site the iOS devices are directed to.
- Gnash1
Yahoo discloses hack of 1 billion accounts
- oey1
I was pew pew in two accounts I don't have anymore:
MySpace and tumblr...
Losers!