A Song of Phishing and Passwords via Cylance

A Song of Phishing and Passwords via Cylance

Phishing for Developers Hackers are targeting Chrome extension developers with phishing attacks to hijack control over their extensions in the Chrome Webstore. The phishing attacks are very well crafted to display a replica of the real Google login page and use new domains to bypass Google’s Safe Browsing blacklist. After gaining control of the extension, the hackers insert malicious code into the browser extensions. These hijacked extensions are then distributed to unsuspecting users via...

Read More

DailyMotion Hack Leaks Emails, Passwords of 87m Users

DailyMotion, a popular video sharing website, said Tuesday it recently suffered an “external security problem” resulting in the compromise of an unspecified number of its users’ data. LeakedSource.com, a repository of breached data, added DailyMotion to its list of “Hacked Sites” on Monday. The site, which operates a subscription service of sorts for leaked data, claims to have information on 87,610,750 users of the video sharing site. DailyMotion would not confirm...

Read More

Twitter Wasn’t Hacked, People Just Love Reusing Passwords

Last week there were many reports that Twitter had been hacked and that a user database of 32 million, was listed on the dark web. Twitter claims that this is not the case. Twitter’s Information Security Officer, Michael Coates, posted a response to this potential hack on their site, and took to the microblogging site. [caption id="attachment_849" align="alignnone" width="624"] Twitter Wasn’t Hacked, People Just Love Reusing Passwords[/caption] What is suspected to be...

Read More

Wearable Technology, Just as Susceptible to Account Compromise

Certain Fitbit accounts have been recently reported as compromised. IT security blogging guru, Brian Krebs reached out to Fitbit CSO, Marc Brown, who has confirmed that it is not a massive breach of account databases, but rather stolen individual account passwords. [i] The wearable, wireless-enabled, activity tracking company Fitbit, recently discovered that the attack was a result of two sources; hacked information coming from password-stealing malware, and data being hacked from...

Read More

This Week in Breaches: Time Warner Cable

The American cable telecommunications company, which happens to be the second-largest cable company in the country, has admitted that 320,000 customer passwords MAY have been obtained[i]. TWC has stated that the email and password details were likely stolen either through malware downloaded through phishing attacks, or indirectly through data breaches of secondary companies that store their customers’ information. While there are no implications that their systems were actually breached, Time Warner...

Read More