Reddit reveals breach as attacker circumvents staff’s 2FA
The company has learned the hard way that there are better ways to deliver two-factor authentication than via text messages
Latest Articles
HP offers rewards for hacking its printers
But don’t get too excited just yet: the first-of-its-kind bug bounty program for printers is invite-only for now
OneDrive app for Android updated with fingerprint authentication
With this update, Microsoft is bringing a feature for Android users that has been available on iOS devices for quite a while now
Inmates hack prison tablets for free credits
The nature of the vulnerability hasn’t been disclosed, but is said to have already been identified and fixed
Google wants you to beef up your account security with its own hardware token
The company credits hardware-based two-factor authentication with practically eliminating the problem of phishing attacks that have targeted its own employees of late
Chrome now flags HTTP sites as “not secure”
This is bad news for many websites that have yet to embrace encrypted connections
Fake banking apps on Google Play leak stolen credit card data
Fraudsters are using bogus apps to convince users of three Indian banks to divulge their personal data
I saw what you did…or did I?
It might seem legit but there are several reasons why you should not always hit the panic button when someone claims to have your email password
Hook, line, and sinker: How to avoid looking ‘phish‑y’
Top tips to help you avoid being caught receiving or sending phishing-looking emails
Bluetooth bug could expose devices to snoopers
Patches have already been released or are expected to see the light of day soon
Major sites still largely lax on prompting users towards safer password choices, study finds
A study assessed whether or not the most popular English-language websites help users strengthen their security by providing them with guidance on creating safer passwords during account sign-up or password-change processes
Canada tackles malicious online advertising
Federal agency issues Notices of Violation to Datablocks and Sunlight Media for allegedly facilitating the installation of malware through online advertising
Google slapped with €4.34bn fine by EU over antitrust violations
Tech giant has 90 days to comply with ruling or faces further penalties over ‘anti-competitive’ practices
British Airways cancelled flights at Heathrow after ‘IT system issue’
Thousands of British Airways passengers left stranded at Heathrow airport following incident
A deep dive down the Vermin RAThole
ESET researchers have analyzed remote access tools cybercriminals have been using in an ongoing espionage campaign to systematically spy on Ukrainian government institutions and exfiltrate data from their systems
Irishman extradited to the US to face charges relating to Silk Road
Gary Davis accused of working as an administrator for the notorious dark web marketplace appears in a federal court in New York
Facebook fined over data privacy scandal
Social media giant fined in the UK for failing to protect users’ personal information and for a lack of transparency
Trends 2018: Doing time for cybercrime
Law enforcement and malware research join forces to take down cybercriminals
Ammyy Admin compromised with malware again; World Cup used as cover
Website altered to serve a malware-tainted version of otherwise legitimate software with the global event in Russia acting as a smokescreen
Polar Flow app exposes geolocation data of soldiers and secret agents
Reminiscent of the recent controversy surrounding the fitness-tracking app Strava, the tale involving Polar Flow shows how the sharing of seemingly innocuous – but potentially telltale – data can have significant privacy implications