Browsing tag
The Office of the Washington State Auditor (SAO) on Monday said it’s investigating a security incident that resulted in the compromise of personal information of more than 1.6 million people who filed for unemployment claims in the state in 2020. The SAO blamed the breach on a software vulnerability in Accellion’s File Transfer Appliance (FTA) […]
Data protection specialists from security firm vpnMentor reported the detection of a data breach on a Romanian web platform, owned by tobacco company British American Tobacco; headquartered in the UK, this is one of the world’s largest manufacturers of tobacco and nicotine-based products. The vpnMentor research team, led by renowned expert Noam Rotem, found the […]
The IT security researchers at vpnMentor have discovered a trove of insecure data hosting on a company based in the United States. Named TrueDialog, the firm provides a range of texting solutions to businesses in the USA and as such had a database containing confidential data of its customers. The data was identified to be […]
Data breaches have become routine, although each new reported incident seems to more seriously affect a larger number of users. Data protection specialists say that, most of the time, the compromised data ends up in the hands of marketing companies and even threat actors in dark web. There are currently dozens of companies dedicated to […]
An organized network of Camgirl sites has reportedly exposed personal data of millions of sex workers and users who participated in sessions on those sites. Simply put: A bundle of databases was left exposed to the public without any authentication. Originally discovered by security researchers at Condition:Black; the exposed network belonged to Barcelona, Spain’s based […]
When a database is left exposed on the Internet, two things can happen: the companies that control them detect the flaws and secure them, or instead, hackers could find them first, exposing millions of data. When the second case is presented, data protection experts mention that it is common for the exposed information to end […]
SQLMap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from […]
Network security specialists report that Malindo Air, a subsidiary of Lion Air Group, a low-cost Indonesian airline, suffered a data breach that has compromised the information of thousands of passengers. The compromised information was even detected in multiple information-sharing forums for more than a month. Compromised records include phone numbers, passport details, and information about […]
An investigation by a group of information security experts from the firm vpnMentor discovered a massive data breach that has affected more than 20 million citizens of Ecuador; it appears that the exposure of this information has occurred due to a database with poor security measures. The researchers, led by Noam Rotem and Ran Locar, […]
Not only large tech companies, enterprise services, banking institutions or government organizations are affected by the activities of malicious hackers. This time, web application security specialists reported a data breach in a third-party service that has resulted in the data leakage of millions of customers of the major French cosmetics company Yves Rocher. The incident […]
Biometric records of more than one million people, in addition to other sensitive details, are exposed to any user’s reach in an unsecured database, web application security experts report. According to reports, the company responsible for this database works closely with British police officers, banking institutions and military contractors. Suprema, the company involved in the […]
A security researcher came up with a brilliant plan to mess up with license plate readers and ticketing systems by registering his car’s license plate as ‘NULL.’ The plan worked (sort of!) and the NULL plates managed to create a glitch in the system. But at the same time, the plan backfired spectacularly as he […]
Inadvertently, Microsoft took offline from the Internet a database that stored more than 10 million faces that, according to information security services experts, the company used to develop facial recognition systems for possible military and commercial implementations. The database, identified as MS Celeb, was put online in 2016 and, according to Microsoft this was the […]
After performing a web application security testing, the operators of Wyzant, well-known website to contact and hire personal tutors in more than 200 different subjects, have confirmed a data breach that exposes sensitive details of the users of the platform. Currently Wyzant has over two million users and more than 70k active tutors. Wyzant sent […]
Cyber forensics course specialists have reported a cyberattack that has affected more than 80 million of property owners in the U.S. The attack campaign is reportedly still active, so the number of people affected could increase in the next few days. Ran Locator and Noam Rotem, renowned cyber activists, discovered an exposed database; the activists […]
The 24 GB database was hosted on a Microsoft cloud server. Another day, another data breach; this time researchers have discovered an unprotected cloud repository containing personal and financial information of more than 80 million US households. This incident reminds us of two similar breaches in which highly sensitive data of 200 million and 82 […]
Another day, another data breach; this time, Victor Gevers, a Dutch security researcher from GDI Foundation has discovered a publically exposed database containing a massive trove of highly sensitive data of millions of Chinese women. According to Gevers, the database which is open for anyone to access contains personal details of 1.8 million women from China […]
The leaked information was in a database belonging to a company dedicated to the development of security and surveillance software Network security and ethical hacking specialists from the International Institute of Cyber Security report the finding of an unsecured database, an incident that exposed personal details of more than 2 million Chinese residents. The Chinese […]
The technological giant is in the process of recovering the deleted information The shut in Azure service last January 29 caused unheard damage. According to network security and ethical hacking experts from the International Institute of Cyber Security, the incident caused the deletion of the databases of some of the users of this service. The […]
Millions of personal and job records were exposed by a database without authentication measures Network security researchers from the International Institute of Cyber Security have reported the discovery of an enormous online database that stored personal information of over 202 million Chinese citizens. According to reports, this information was available to anyone with no authentication […]
This tool allows you to perform OSINT and reconnaissance on an organisation or an individual. It allows one to search 1.4 Billion clear text credentials which was dumped as part of BreachCompilation leak. This database makes finding passwords faster and easier than ever before. Screenshot Above image search the credentials for uber.com and have found […]