Security Alerts & News
by Tymoteusz A. Góral

History
#1128 Now it’s easy to see if leaked passwords work on other sites
Over the past few months, a cluster of megabreaches has dumped account credentials for a mind-boggling 642 million accounts into the public domain, where they can then be used to compromise other accounts that are protected by the same password. Now, there's software that can streamline this vicious cycle by testing for reused passcodes on Facebook and other popular sites.

Shard, as the command-line tool has been dubbed, is designed to allow end users to test if a password they use for one site is also used on Facebook, LinkedIn, Reddit, Twitter, or Instagram, its creator, Philip O'Keefe, told Ars. The security researcher said he developed the tool after discovering that the randomly generated eight-character password protecting several of his accounts was among the more than 177 million LinkedIn passwords that were leaked in May.
Read more
#1134 Little Snitch bug leaves some Mac systems open to attack
#1133 Ranscam ransomware deletes victims’ files outright
#1132 xDedic hacked server market resurfaces on Tor domain
#1131 Adobe patches 52 vulnerabilities in Flash Player
#1130 Ransomware 'stopped' by new software
#1129 Billion-dollar scams: The numbers behind BEC fraud
#1128 Now it’s easy to see if leaked passwords work on other sites
#1127 Serious flaw fixed in widely used WordPress plug-in
#1126 How to hack mobile devices using YouTube videos
#1125 BMW Core Web Portal & ConnectedDrive - exploitation of car configurations
#1124 MIT researchers devise new anonymity network following Tor bug
#1123 Google to train 2 million Indian Android developers
#1122 Jigsaw ransomware decrypted, again
#1121 Cisco unveils three DNA network security technologies
#1120 Cisco bolsters cloud security offering with new solutions
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12