Hack

A bug in Microsoft’s login system made it easy to hijack anyone’s Office account

A string of bugs when chained together created the perfect attack to gain access to someone’s Microsoft account — simply by tricking a user into clicking a link. Sahad Nk, an India-based bug h

Equifax breach was ‘entirely preventable’ had it used basic security measures, says House report

A House Oversight Committee report out Monday has concluded that Equifax’s security practices and policies were sub-par and its systems were old and out-of-date, and bothering with basic securit

Quora says 100 million users may have been affected by data breach

Quora said today that a security breach may have compromised data from about 100 million users. In an email sent to users today and a blog post by CEO Adam D’Angelo, the company said a “malicious

Credit card stealing malware on Canada’s 1-800-FLOWERS website went undetected for four years

It’s going to take more than a bunch of posies to make up for this one. The Canadian branch of 1-800-FLOWERS revealed in a filing with the California attorney general’s office that malware

Marriott’s breach response is so bad, security experts are filling in the gaps — at their own expense

Last Friday, Marriott sent out millions of emails warning of a massive data breach — some 500 million guest reservations had been stolen from its Starwood database. One problem: the email sender&#82

Marriott says 500 million Starwood guest records stolen in massive data breach

Starwood Hotels has confirmed its hotel guest database of about 500 million customers has been stolen in a data breach. The hotel and resorts giant said in a statement filed with U.S. regulators that

Amazon admits it exposed customer email addresses, but refuses to give details

Amazon’s renowned secrecy encompasses its response to a new security issue, withholding info that could help victims protect themselves. Amazon emailed users Tuesday, warning them that it exposed an

A leaky database of SMS text messages exposed password resets and two-factor codes

A security lapse has exposed a massive database containing tens of millions of text messages, including password reset links, two-factor codes, shipping notifications and more. The exposed server belo

Facebook bug let websites read ‘likes’ and interests from a user’s profile

Facebook has fixed a bug that let any website pull information from a user’s profile — including their “likes” and interests — without that user’s knowledge. That’s t

Twitter, those ‘verified’ bitcoin-pushing pillocks are pissing everyone off

Elon Musk’s tweets piss me off for two reasons. When he’s not accusing actual heroes of sex crimes or trolling the federal government, it’s what comes after that drives me batshit. T

Hackers stole income, immigration and tax data in Healthcare.gov breach, government confirms

Hackers siphoned off thousands of Healthcare.gov applications by breaking into the accounts of brokers and agents tasked with helping customers sign up for healthcare plans. The Centers for Medicare a

Utah man pleads guilty to causing 2013 gaming service outages

A Utah man has pleaded guilty to computer hacking charges, after admitting to knocking several gaming services offline five years ago. Austin Thompson, 23, launched several denial-of-service attacks a

Two hackers behind 2016 Uber data breach have been indicted for another hack

Two hackers who stole millions of users’ data from ride-hailing firm Uber have been indicted on separate hacking charges related to a data breach at online learning portal Lynda, two people fami

In its first cyberoperation against Russian trolls, U.S. takes a gentle approach

Russia has been blamed for shutting down power grids, hacking into critical systems, and more recently launching a massive misinformation campaign aimed at meddling with past and upcoming elections. N

Saudi Arabia’s ‘Davos in the Desert’ website was hacked and defaced

The website of the Saudi government’s upcoming Future Investment Initiative conference was hacked and defaced with images of the murdered Saudi journalist Jamal Khashoggi. Several reporters twe

Hackers breach Healthcare.gov system, taking files on 75,000 people

A government system used by insurance agents and brokers to help customers sign up for healthcare plans was breached, allowing hackers to siphon off sensitive and personal data on 75,000 people. The C

Buggy software in popular connected storage drives can let hackers read private data

Security researchers have found flaws in four popular connected storage drives that they say could let hackers access a user’s private and sensitive data. The researchers Paulos Yibelo and Dani

Donald Daters, a dating app for Trump supporters, leaked its users’ data

A new dating app for Trump supporters that wants to “make America date again” has leaked its entire database of users — on the day of its launch. The app, called “Donald Daters,” is aimed at

Worries linger as Facebook withholds stolen searches & checkins

Hacked Facebook users still don’t know which 15 recent searches and 10 latest checkins were exposed in the company’s massive breach it detailed last week. The company merely noted that those w

MindBody-owned FitMetrix exposed millions of user records — thanks to servers without passwords

FitMetrix, a fitness technology and performance tracking company owned by gym booking giant Mindbody, has exposed millions of user records because it left several of its servers without a password. Th
Load More