Troy Hunt
Facebook’s lead data protection regulator in the European Union is seeking answers from the tech giant over a major data breach reported over the weekend. The breach was reported by…
A security flaw in Grindr let anyone easily hijack user accounts
Grindr, one of the world’s largest dating and social networking apps for gay, bi, trans, and queer people, has fixed a security vulnerability that allowed anyone to hijack and take…
Decrypted: iOS 13.5 jailbreak, FBI slams Apple, VCs talk cybersecurity
It was a busy week in security. Newly released documents shown exclusively to TechCrunch show that U.S. immigration authorities used a controversial cell phone snooping technology known as a “stingray”…
Troy Hunt has revealed he’s looking for an acquirer for the breach notification service he set up more than five years ago — aka: Have I Been Pwned. In a…
The UK’s latest list of most hacked passwords is as bad as you’d think
Names, soccer players, musicians and fictional characters make up some of the worst passwords of the year, according to the U.K. government’s National Cyber Security Center. But nothing beats “123456”…
Featured Article
We found a massive spam operation — and sunk its server
For ten days in March, millions were caught in the same massive spam campaign. Each email looked like it came from someone the recipient knew: the spammer took stolen email addresses and passwords, quietly logged into their email account, scraped their recently sent emails and pushed out personalized emails to the recipient of that sent…
Marriott’s breach response is so bad, security experts are filling in the gaps — at their own expense
Last Friday, Marriott sent out millions of emails warning of a massive data breach — some 500 million guest reservations had been stolen from its Starwood database. One problem: the…
Mozilla is adding a new security feature to its Firefox Quantum web browser that will alert users when they visit a website that has recently reported a data breach. When…
Popular ad-blocker AdGuard has forcibly reset all of its users’ passwords after it detected hackers trying to break into accounts. The company said it “detected continuous attempts to login to…
Three years later, Let’s Encrypt has issued over 380 million HTTPS certificates
Bon anniversaire, Let’s Encrypt! The free-to-use nonprofit was founded in 2014 in part by the Electronic Frontier Foundation and is backed by Akamai, Google, Facebook, Mozilla and more. Three years ago Friday,…
A little over a month since 1Password incorporated a pwned password check feature developed by Have I Been Pwned‘s Troy Hunt, the password manager service has now netted what’s being described…