A server found without a password contained over 419 million database records of Facebook users in the U.S., U.K. and Vietnam.
data breach
MoviePass Breach Exposed Unencrypted Credit Card Numbers
Movie ticket subscription service MoviePass store customer credit card numbers in plain text on an exposed server.
Capital One Hacker Possibly Hacked 30 Other Companies
Paige Thompson, the Capital One hacker, possibly hacked 30 other companies, new court documents revealed. Victims aren’t yet known.
That Recent Data Breach Might Not Be Limited to Capital One
The Capital One data breach might not have bene limited to the bank. Other companies could’ve been affected too, according to Slack messages from the hacker Paige Thompson.
Reports from Forbes and security reporter Brian Krebs indicating that Capital One may not have been the only company affected, pointing to “one of the world’s biggest telecom providers, an Ohio government body, and a major U.S. university,” according to Slack messages sent by the alleged hacker.
Krebs posted a screenshot of a list of files purportedly stolen by the alleged hacker. The stolen data contained filenames including car maker “Ford” and Italian financial services company “Unicredit.”
Capital One Breach, Interactionless iOS Bugs – TMO Daily Observations 2019-07-30
Bryan Chaffin and Andrew Orr join host Kelly Guimont to talk about what you can do about the Capital One data breach, and iOS bugs.
Capital One Hack: What We Know and What You Can Do
A Capital One hack was recently discovered, affecting over 100 million people. Here’s what we know, and what you can do to stay protected.
Over 2 Billion User Records Exposed in Orvibo Data Breach
Orvibo makes smart home products, and researchers found a leak in its database that exposed over two billion user records. This included usernames, email addresses, passwords, and precise locations.
The data breach affects users from around the world. We found logs for users in China, Japan, Thailand, the US, the UK, Mexico, France, Australia, and Brazil. We expect that there are more users represented in the 2 billion plus logs.
We first contact Orvibo via email on June 16. When we didn’t receive a response after several days, we also tweeted the company to alert them to the breach. They still have not responded, nor has the breach been closed.
Utterly ridiculous. It’s one thing to leak data, and other thing to ignore the problem and not fix it.
Photos of Travelers, License Plates Stolen in U.S. Customs Breach
Photos of travelers and license plates were stolen in a U.S. Customs breach. A subcontractor for the agency was hacked, but CBP won’t say which one. One hypothesis says it might be Perceptics.
CBP said copies of “license plate images and traveler images collected by CBP” had been transferred to the subcontractor’s company network, violating the contract’s security and privacy rules. The subcontractor’s network was then attacked and breached. No CBP systems were compromised, the agency said. It’s unclear whether passport or facial-recognition photos were included in the breach.
Flipboard Suffers Data Breach, Emails All 145M Users
Flipboard revealed that an “unauthorized party” accessed its database between June 2, 2018 and March 23, 2019, as well as between April 21-22, 2019.
Ad Click Attribution, GSuite Data Exposed – TMO Daily Observations 2019-05-22
Charlotte Henry and Andrew Orr join host Kelly Guimont to discuss ad blocking in Safari and the latest report of plaintext password storage.
Influencer Data Breach, Consumer Privacy Rollback – TMO Daily Observations 2019-05-21
Andrew Orr and John Martellaro join host Kelly Guimont to talk about a social media database breach and a new wrinkle in consumer privacy.
Stack Overflow Breach Exposes Some User Data (Update)
Stack Overflow confirmed Thursday that it suffered a data breach last week and said that a “very small number” of users had some data exposed.
Exposed Database on Microsoft Cloud Contains Info on 80 Million U.S. Households
A research team has uncovered an exposed database hosted on a Microsoft cloud server containing 24GBs of data on over 80 million U.S. households.
No, You Probably Don't Take Privacy and Security Seriously
Zach Whittaker is tired of the same old line companies use, like when they suffer a data breach: “We take your privacy and security seriously.”
The truth is, most companies don’t care about the privacy or security of your data. They care about having to explain to their customers that their data was stolen…About one-third of all 285 data breach notifications had some variation of the line. It doesn’t show that companies care about your data. It shows that they don’t know what to do next.
I’m betting there’s a template that public relations employees have that they copy and paste into official emails sent out in the wake of security stuff like this.
Happy Valentine's Day, This Dating App got Hacked
Dating app Coffee Meets Bagel announced today that it suffered a data breach on Monday.
Still More Data Breach Updates, iPad Picks – TMO Daily Observations 2019-02-08
Bryan Chaffin and Andrew Orr join host Kelly Guimont to discuss the newest collection of breached data and some picks for great iPad apps.
This Data Breach is Equal to 469,000 War and Peace Books
Last month we heard of the Collection #1 data breach, which contained 773 million email addresses and 21 million passwords. Now, Collections #2-#5 are here.
Despite its unthinkable size, which was first reported by the German news site Heise.de, most of the stolen data appears to come from previous thefts, like the breaches of Yahoo, LinkedIn, and Dropbox. WIRED examined a sample of the data and confirmed that the credentials are indeed valid, but mostly represent passwords from years-old leaks.
As with any data breach you can find out if your details have been leaked by visiting HaveIBeenPwned.com. My eBook copy of War and Peace is 1.8MB. The total size of the new breaches is 845GB, which equals 469,000 of those books.
Collection 1, Tim Cook in Time Magazine – TMO Daily Observations 2019-01-17
Charlotte Henry and Andrew Orr join host Kelly Guimont to discuss the new collection of breached data and Tim Cook’s Time Magazine article.
Collection 1 is a Massive New Data Breach
Troy Hunt, creator of the Have I Been Pwned? tool, wrote a blog post about the latest data breach called Collection 1.
Let’s start with the raw numbers because that’s the headline, then I’ll drill down into where it’s from and what it’s composed of. Collection #1 is a set of email addresses and passwords totaling 2,692,818,238 rows.It’s made up of many different individual data breaches from literally thousands of different sources.
To find out if your account credentials were leaked, visit haveibeenpwned.com.
Voipo Database Exposed SMS Messages
Voipo CEO Timothy Dick said the company found no evidence in logs or on its network that a data breach happened.
Facebook Data Breach Redux, 5G Rollout – TMO Daily Observations 2018-12-19
Dave Hamilton and Andrew Orr join host Kelly Guimont to talk about Facebook’s latest data breach (yes again) and new 5G hardware rollouts.
Security Laws and Data Breaches – TMO Daily Observations 2018-12-07
Andrew Orr and Bryan Chaffin join host Kelly Guimont to talk about security laws, data breaches, and robot-led bear spray attacks.
Find Out If Your Data Was Leaked With This Data Breach Tool
A data breach tool called have i been pwned? is an app and website that helps you find out if your information was included in data breaches. It’s easy to use, just enter your email address. Have I been pwned? allows you to search across multiple data breaches to see if your personal data was compromised by any of the big hacks on record. The app includes no or automatic collecting of private data, searching among published databases and so-called pastes, getting real-time updated by receiving push notifications when new breaches happen, and information behind certain hacks, provided with relevant links to more information. The app has also been provided as open source software, found at GitHub. App Store: Free
Mac Pro or Mini, Yet Another Data Breach – TMO Daily Observations 2018-12-04
Join Kelly Guimont as she chats with John Martellaro and Andrew Orr about the latest data breach and the Mac Pro or Mini debate.