A database filled with 1.2 billion records of data was found on the dark web back in October. I hesitate to call this a data breach because:
While the collection is impressive for its sheer volume, the data doesn’t include sensitive information like passwords, credit card numbers, or Social Security numbers. It does, though, contain profiles of hundreds of millions of people that include home and cell phone numbers, associated social media profiles like Facebook, Twitter, LinkedIn, and Github, work histories seemingly scraped from LinkedIn, almost 50 million unique phone numbers, and 622 million unique email addresses.
In other words this is all data that people have willingly put on their social media profiles. While it can be used for nefarious purposes (especially phone numbers) this is less of a breach and more of a database of scrapes. Nevertheless I’m using our “data breach” tag.
John Martellaro and Bryan Chaffin join host Kelly Guimont to discuss the Zynga breach and look back at the 1997 Think Different ad campaign.
A hacker going by the handle ‘Gnosticplayers’ claims to have hacked Words With Friends and accessed a database with over 218 million users.
Another day, another data breach. This time it’s DoorDash and “unusual activity involving a third-party” affecting 4.9 million.
A server found without a password contained over 419 million database records of Facebook users in the U.S., U.K. and Vietnam.
Movie ticket subscription service MoviePass store customer credit card numbers in plain text on an exposed server.
Paige Thompson, the Capital One hacker, possibly hacked 30 other companies, new court documents revealed. Victims aren’t yet known.
The Capital One data breach might not have bene limited to the bank. Other companies could’ve been affected too, according to Slack messages from the hacker Paige Thompson.
Reports from Forbes and security reporter Brian Krebs indicating that Capital One may not have been the only company affected, pointing to “one of the world’s biggest telecom providers, an Ohio government body, and a major U.S. university,” according to Slack messages sent by the alleged hacker.
Krebs posted a screenshot of a list of files purportedly stolen by the alleged hacker. The stolen data contained filenames including car maker “Ford” and Italian financial services company “Unicredit.”
Bryan Chaffin and Andrew Orr join host Kelly Guimont to talk about what you can do about the Capital One data breach, and iOS bugs.
A Capital One hack was recently discovered, affecting over 100 million people. Here’s what we know, and what you can do to stay protected.
Orvibo makes smart home products, and researchers found a leak in its database that exposed over two billion user records. This included usernames, email addresses, passwords, and precise locations.
The data breach affects users from around the world. We found logs for users in China, Japan, Thailand, the US, the UK, Mexico, France, Australia, and Brazil. We expect that there are more users represented in the 2 billion plus logs.
We first contact Orvibo via email on June 16. When we didn’t receive a response after several days, we also tweeted the company to alert them to the breach. They still have not responded, nor has the breach been closed.
Utterly ridiculous. It’s one thing to leak data, and other thing to ignore the problem and not fix it.
Photos of travelers and license plates were stolen in a U.S. Customs breach. A subcontractor for the agency was hacked, but CBP won’t say which one. One hypothesis says it might be Perceptics.
CBP said copies of “license plate images and traveler images collected by CBP” had been transferred to the subcontractor’s company network, violating the contract’s security and privacy rules. The subcontractor’s network was then attacked and breached. No CBP systems were compromised, the agency said. It’s unclear whether passport or facial-recognition photos were included in the breach.
Flipboard revealed that an “unauthorized party” accessed its database between June 2, 2018 and March 23, 2019, as well as between April 21-22, 2019.
Charlotte Henry and Andrew Orr join host Kelly Guimont to discuss ad blocking in Safari and the latest report of plaintext password storage.
Andrew Orr and John Martellaro join host Kelly Guimont to talk about a social media database breach and a new wrinkle in consumer privacy.
Stack Overflow confirmed Thursday that it suffered a data breach last week and said that a “very small number” of users had some data exposed.
A research team has uncovered an exposed database hosted on a Microsoft cloud server containing 24GBs of data on over 80 million U.S. households.
Zach Whittaker is tired of the same old line companies use, like when they suffer a data breach: “We take your privacy and security seriously.”
The truth is, most companies don’t care about the privacy or security of your data. They care about having to explain to their customers that their data was stolen…About one-third of all 285 data breach notifications had some variation of the line. It doesn’t show that companies care about your data. It shows that they don’t know what to do next.
I’m betting there’s a template that public relations employees have that they copy and paste into official emails sent out in the wake of security stuff like this.
Dating app Coffee Meets Bagel announced today that it suffered a data breach on Monday.
Bryan Chaffin and Andrew Orr join host Kelly Guimont to discuss the newest collection of breached data and some picks for great iPad apps.