Security Alerts & News
by Tymoteusz A. Góral

History
#660 Hundreds of Spotify credentials appear online – users report accounts hacked
A list containing hundreds of Spotify account credentials – including emails, usernames, passwords, account type and other details – has popped up on the website Pastebin, in what appears to be a possible security breach. After reaching out to a random sampling of the victims via email, we’ve confirmed that these users’ Spotify accounts were compromised only days ago. However, Spotify says that it “has not been hacked” and its “user records are secure.”

It’s unclear, then, where these particular account details were acquired, given that they are specific to Spotify, rather than a set of generic credentials that just happen to work on Spotify.
Read more
#665 7 million unsalted MD5 passwords leaked by Minecraft community Lifeboat
#664 Steam patches broken crypto in wake of replay, padding Oracle attacks
#663 Firefox 46 patches critical memory vulnerabilities
#662 Cisco: Tuto4PC utilities silently install 12M mackdoors
#661 RuMMS: The latest family of Android malware attacking users in Russia via SMS phishing
#660 Hundreds of Spotify credentials appear online – users report accounts hacked
#659 Hacking group “PLATINUM” used Windows’ own patching system against it
#658 If you use Waze, hackers can stalk you
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12