As reported by Bleeping Computer, Twitter logged out some users after addressing a bug where some Twitter accounts remained logged on some mobile devices after voluntary password resets. “That means that if you proactively changed your password on one device, but still had an open session on another device, that session may not have been closed. Web sessions were not affected and were closed appropriately,” Twitter explained. There are some potential privacy risks for Twitter users who were affected by this bug, including having their accounts accessed by others who got their hands on devices that remained logged in without…
ISBuzz Team
Okta’s global State of Secure Identity Report has found that credential stuffing is the top threat against customer accounts, outpacing legitimate login traffic in some countries. The report presents trends, examples and observations unearthed from the billions of authentications on Okta’s Auth0 platform. Credential stuffing is when attacks take advantage of the practice of password reuse. It begins with a stolen login or password pair, then threat actors use these credentials across other common sites, using automated tooling used to “stuff” credential pairs into login forms. When an account holder reuses the same (or similar) passwords on multiple sites, it…
Following news of a hack that saw new Grand Theft Auto footage leaked , experts reacted below.
Following news that Rockstar Games have been hacked, resulting in a data leak (https://www.bbc.co.uk/news/technology-62960828), Louise Ferrett, Threat Intelligence Analyst at Searchlight Security has found by scanning the dark web that: “Users on cybercriminal and dark web forums are pointing to a member of LAPSUS$ as the perpetrator of the cyberattack against Rockstar that has led to the leak of the latest Grand Theft Auto game. For example, this post on DoxBin accuses the LAPSUS$ member known by the alias ‘White’ for being behind the attack and last week’s attack against Uber: “As we can see from this screenshot, this is the latest in a…
In light of the news that both American Airlines and Revolut have suffered data breaches from social engineering, the Industry leader commented below on the danger of social media.
It has been announced that cybercriminals have launched a ransomware attack against the parliament in Bosnia and Herzegovina, which has brought critical activity to a standstill.
Considering the BBC’s warning for people to be on high alert for fake emails and texts claiming to offer discounts on energy bills, cyber security experts reacted below.
The digital challenger bank Revolut has confirmed it was hit by a highly targeted cyberattack that allowed hackers to access the personal details of tens of thousands of customers. The app-based bank, launched in the UK in 2015, admitted that a third party gained access to the personal details of 0.16% of its 20 million customers but said: “no funds have been accessed or stolen”.
In response to reports that financial technology company Revolut has suffered a cyberattack that gave an unauthorized third party access to personal information of tens of thousands of clients and relied on social engineering, an expert at cybersecurity firm offers the following comment.
Uber’s computer systems were breached and the company has alerted authorities, the ride-hailing giant said Thursday. The ride-hailing company said in a tweet that it was “responding to a cybersecurity incident.” The hacker surfaced in a message posted in Slack, according to two people familiar with the matter, who spoke on the condition of anonymity because of the sensitive nature of the incident.