Researchers say that two publicly exposed dataset are leaking Facebook data- from user names to plaintext passwords. Hundreds of millions of Facebook records – including account names, personal data, and more – have been found in two separate publicly-exposed app datasets. The first publicly-exposed dataset originates from a Mexico-based media company, Cultura Colectiva, and contains over 540 million records including ...

Google security researcher Matthew Garrett publicly released a zero day vulnerability he discovered in the TP-Link SR20 router smart home hub in one device. The device is designed to integrate with a user’s home automation kit that allows them to use the device as the core of their home network and to work with other smart devices. The vulnerability could ...

Crime without punishment: Group-IB issues a new report on JS-sniffers that infected 2440 websites around the world Group-IB, an international company that specializes in preventing cyberattacks, has issued a new comprehensive report on the analysis of JavaScript-sniffers – a type of malware designed to steal customer payment data from online stores. 2440 infected ecommerce websites with a total of around 1.5 million unique daily ...

In one instance, agents waited nine months to tell a company it had been breached, according to an internal watchdog. The FBI takes too long to notify groups when they’ve succumbed to cyberattacks, and the alerts those victims receive are often sparse on useful information, according to an internal watchdog. The Justice Department Inspector General found the bureau’s reliance on ...

MEXICO CITY, 28 March 2019.- Rockwell Automation, Panduit and Cisco, with special collaboration with Tecnologico de Monterrey, EY and Unified announced today the opening of their Manufacturing Advanced Technology Center (MATC) in Mexico City.  The MATC showcases how companies in the automotive, mining, food & beverage and cementing industries can embrace the future now by establishing their digital journey for ...

The Microsoft Defender Advanced Threat Protection (ATP) service featured in Windows 10 version 1809 alerted researchers to an NSA-inspired backdoor vulnerability in Huawei laptops. The Microsoft Defender Advanced Threat Protection (ATP) service featured in Windows 10 version 1809 alerted researchers to an NSA-inspired backdoor vulnerability in Huawei laptops. The PCManager software included in some Huawei’s Matebook systems allows unprivileged users ...

Hackers breached Toyota’s IT systems and gained unauthorized access to servers that contained sales information of almost 3.1 customers. The accessed data belongs to several sales subsidiaries such as Toyota Tokyo Sales Holdings, Tokyo Tokyo Motor, Tokyo Toyopet, Toyota Tokyo Corolla, Nets Toyota Tokyo, Lexus Koishikawa Sales, Jamil Shoji (Lexus Nerima), and Toyota West Tokyo Corolla. What is the issue ...

The e-commerce platform released patches for both Magento Commerce and Magento Open Source variants. The SQL flaw found in versions 2.3.1 and earlier could allow attackers to steal sensitive information from databases connected to Magento-based sites. Content management software provider Magento has released a string of updates to fix multiple security holes in its platform. These updates come after the ...

Business Email Compromise (BEC) is a type of scam that targets corporate companies that pay bills via wire transfers. BEC scammers targeting employees of corporate companies mostly impersonate the company’s CEO or senior executives. These scammers use social engineering techniques to trick employees into sending funds directly to the scammers. Types of BEC Scams According to the FBI, there are five ...

The first and foremost step in the Man-in-the-Middle (MitM) attack is to intercept internet traffic before it reaches its destination. Once the interception is achieved, the SSL traffic has to be decrypted without the user’s knowledge and without interrupting the application. Man-in-the-Middle (MitM) is an attack where the attacker eavesdrops on the communication between two parties, commonly between a user ...