With the Snapchat and Dropbox breaches this week, the attack surface just got raised a notch. In case you are not familiar with these two breaches, I will describe them at a high level what happened. With Snapchat, users assume that their pictures will disappear quickly on the other end after they are opened. However, […]
Continue reading → [DISPLAY_ACURAX_ICONS]Forbes and other media outlets are reporting that we may be seeing the next version of the celebrity nude picture breach (called the fappening) that leaked nude pictures of famous celebs such as Jennifer Lawrence and many others. This breach, nicknamed THE SNAPPENING, apparently came from a third party SnapChat helper app and website which […]
Continue reading → [DISPLAY_ACURAX_ICONS]The breaches just keep happening. The most recent breaches include KMart (the size of which is still being determined), Dairy Queen (395 stores) and MBIA. The first two are, once again, from a Point of Sale (cash register) system. The MBIA breach came from a misconfigured web server. When will it end? Not until people […]
Continue reading → [DISPLAY_ACURAX_ICONS]According to an article in ARS technica this past weekend, Home Depot has some interesting factoids in their security background. Just to be clear, this is only one side of the story, and I suspect they are neither the best nor the worst when it comes to security – but I don’t have any insider […]
Continue reading → [DISPLAY_ACURAX_ICONS]Home Depot released a press release today providing some more details on the recent and until now ongoing credit card breach. The good news is that the breach primarily affected self checkout stations between April and September of this year. Home Depot likely has a pretty good security department which means that this malware must […]
Continue reading → [DISPLAY_ACURAX_ICONS]According to CNN, Oracle discovered an issue in 2012 that allowed hackers to compromise Oracle systems with this weakness. Some white hat hackers were wandering around the internet recently (in 2014) and discovered that some systems had not had this patch applied. These hackers were able to access children’s school records, arrest records, the real […]
Continue reading → [DISPLAY_ACURAX_ICONS]