Browsing tag
Thanks to yet another unsecure MongoDB Server. Dalil is a Saudi caller ID app that is reportedly been leaking user data because of storing it on an unsecure MongoDB server. Within a week private data of over 5 million Dalil users has been leaked and the data is available online easily for everyone to access. […]
A database hosted on Amazon Web Services (AWS) and owned by Dow Jones has accidentally been exposed putting approx. 2.4 million corporate entities and individuals at risk of data theft. Reportedly, the exposed database comprises sensitive information about terrorists, criminals, and shady businesses. The culprit in this incident is an incorrectly configured and poorly secured […]
Does your VPN leaks DNS data? Does the DNS testing tool you’re using shows actual or sponsored results for affiliate marketing? Virtual private network (VPN) users are increasing at a great pace due to growing privacy concerns and numerous VPN options, including both paid and free. But many of us make the wrong choice and […]
VPN is a wonderful thing that you all have probably heard about. I assume it was something like this: “Using a VPN you can visit websites blocked by state services and engage in any network activity without fear of revealing your actual IP address.” If you thought that Virtual Private Network is a magic tool […]
Xiaomi is soon bringing its high-end Mi 9 to life (February 20 to be precise) which has been making headlines for quite some time. The company has also dropped a few hints here and there, the most recent ones shedding light on its camera and other features. According to Xiaomi CEO Lei Jun via a post […]
It hasn’t even been 15 days since details of the world’s biggest online private data dump were discovered by security researchers and now its second “installment” has posted online. As per the report from Heise.de, a German-language website, the first collection, which was published on January 17 and dubbed as Collections #1 had approx. 770 […]
It’s a whopping 87GB data – Find out if you are affected by the massive data breach. Security researcher and founder of Have I Been Pwned, Troy Hunt, has revealed that around 773 million ‘unique’ email IDs and 22 million ‘unique’ passwords were available on MEGA cloud service. Later on, the same data was found posted […]
China is often suspected to sponsor hack attacks against organizations and agencies in the US or Europe. However, this time around China itself has become a victim of a security breach. Reportedly, an unprotected MongoDB has exposed personal and professional details of more than 202 million people. HackenProof’s security researcher Bob Diachenko discovered that resume files of […]
The Dark Overlord hackers have fulfilled their promise and published the first batch of decryption keys for 650 documents in a 70 megabytes file related to the 9/11 attacks. Initially, the group had vowed to publish 10GB of data on Twitter account or on a Dark Web form called “KickAss.” but after being suspended on Twitter the Dark […]
The password manager exposed the data due to a misconfigured S3 bucket. The Blur privacy and password management service developer Abine has issued a security notice this Monday stating that a file containing important customer data was accidentally exposed to the internet. Originally, the data was identified on December 13th after Abine found a file containing data including […]
The data breach against North Korean Defectors came after hackers targeted computer at Resettling agency. Private data of approx. 1,000 North Korean Defectors present in the South have been exposed in a data breach which makes them vulnerable to all sorts of threats from the North, claims the officials from the Unification Ministry. According to […]
Another day, another data breach – This time, multinational tech giant Nokia has been caught exposing highly sensitive data of industrial nature that would have put its internal security at risk. The data was discovered by the director of the cyber risk research team at Hacken and Hackenproof Bob Diachenko during routine Shodan security audit on December […]
SplashData, Inc. a leading password management application developer including SplashID has released a list of the 100 worst passwords of 2018. The company established the ranking after evaluating more than 5 million keywords leaked on the Internet this year. Their findings highlight the fact that the adoption of security practices is still underestimated by Internet users, […]
Another day, another privacy breach – This time, the social media giant Facebook has announced that a bug in its Photo API exposed private photos of over 6.8 million users to third-party app developers. The breach took place from September 13 to September 25, 2018, which means for 12 days straight some developers could view your […]
The Cadastro de Pessoas Físicas (CPFs) is a taxpayer registry identification for Brazilians – In this case, 120 million CPFs were exposed online. The IT security researchers at InfoArmor’s Advanced Threat Intelligence team discovered a treasure trove of personal sensitive data belonging to over 120 million Brazilians exposed on an unprotected AWS (Amazon Web Service) S3 cloud […]
Misconfigured ElasticSearch Servers Exposed Private Data of over 82 Million Users. A warning has been issued by Bob Diachenko, a HackenProof security researcher informing users in the US that around 73 gigabytes of data is identified in a “regular security audit” of publicly accessible servers on the Shodan IoT search engine. According to the researcher, […]
The e-commerce giant Amazon has announced that it has suffered a major data breach in which names and email addresses of its registered customers have been exposed on its website – The incident occurred a few days before Black Friday. The company did not reveal what exactly happened, how many users were impacted or what’s their […]
There’s bad news for those who rely upon SMS-based 2FA authentication. A Berlin-based security researcher Sébastien Kaul has revealed that Voxox exposed a huge database containing tens of millions of text messages by storing it on an unprotected server. The VOIP and Cloud communication for SMS and voice services provider firm, Voxox, has exposed sensitive […]
Facebook somehow manages to make headlines one way or the other. Last week we were all praises for the social network for introducing the Unsend feature in the Messenger app and this week we are despising the company’s lack of interest in offering fool-proof security to its users after bug in Instagram’s download your data tool. […]
An iOS user Jose Rodriguez, who discovered a passcode bypass related flaw in iOS 12 last month, has now identified another passcode bypass bug in the recently released iOS 12.0.1. According to Rodriguez, a Spanish security researcher, the new bug offers an easy access to Photo Library of any locked iPhone. An attacker can select […]
Google has admitted that a bug was present in the API for the consumer version of Google Plus (Google+) that let third-party developers’ access data of not just its users but also of their contacts and friends. Reportedly, data of up to 500,000 users could have been exposed to external developers. The bug was present […]