How your Instagram account could have been hijacked
A researcher found that it was possible to subvert the platform’s password recovery mechanism and take control of user accounts
Latest Articles
Week in security with Tony Anscombe
ESET researchers describe the ins and outs of a zero-day exploit that has been used for a highly targeted attack and reveal the name of the threat actor that deployed it
Cybercrime seen to be getting worse: The time to act is now
What mounting public concern about falling victim to cybercrime says about government and corporate efforts at cybercrime deterrence
Buhtrap group uses zero‑day in latest espionage campaigns
ESET research reveals notorious crime group also conducting espionage campaigns for the past five years
Windows zero‑day CVE‑2019‑1132 exploited in targeted attacks
ESET research discovers a zero-day exploit that takes advantage of a local privilege escalation vulnerability in Windows
UK’s data watchdog hands out two mega‑fines for breaches
The times they have a-changed since the ICO could only slap fines worth a fraction of the current amounts
Malicious campaign targets South Korean users with backdoor‑laced torrents
ESET researchers have discovered a malicious campaign distributing a backdoor via torrents, with Korean TV content used as a lure
Week in security with Tony Anscombe
Chinese smart home solutions provider Orvibo has leaked two billion logs from devices managed via its cloud platform, exposing sensitive information about their users
NHS warned to act now to keep hackers at bay
A trifecta of issues impact the organization’s cyber-resilience and conspire to put it in the firing line of cyberattacks
Two billion user logs leaked by smart home vendor
The leak, which has since been plugged, exposed a range of highly specific and sensitive information about users
Ex‑Equifax executive sent to jail for insider trading after breach
“Sounds bad”, the former Equifax CIO wrote in a text after learning of the breach that ended up affecting almost half the US population
Week in security with Tony Anscombe
With partner abuse increasingly going digital, we took an in-depth look this week at what needs to be done to stop the scourge of stalkerware
Microsoft enhances OneDrive to secure your sensitive files
The new feature is intended to protect the kind of data that you hold particularly dear
Two US cities opt to pay $1m to ransomware operators
A few days apart, two cities in Florida cave in to extortionists’ demands in hopes of restoring access to municipal computer systems
Stopping stalkerware: What needs to change?
What technology makers and others can – and should – do to counter the kind of surveillance that starts at home
Hackers breach NASA, steal Mars mission data
The infiltration was only spotted and stopped after the hackers roamed the network undetected for almost a year
Week in security with Tony Anscombe
ESET researchers throw light on an unusual cryptocurrency miner and on Android apps that can get around 2FA protections
Privacy legislation may soon affect smaller businesses
Why smaller businesses cannot afford to ignore how they gather, store and protect data
LoudMiner: Cross‑platform mining in cracked VST software
The story of a Linux miner bundled with pirated copies of VST (Virtual Studio Technology) software for Windows and macOS
You’d better change your birthday – hackers may know your PIN
Are you in the 26% of people who use one of these PIN codes to unlock their phones?