Google has released a new Chrome extension "Password Checkup" that warns users if their account username and passwords are known to be unsafe and leaked as part of past data breaches.
Popular WordPress plugin maker WPML said their website was hacked over the weekend and led to the loss of customer data. The culprit was an ex-employee who exploited a backdoor planted on an unsecured web server.
A massive data breach dubbed "Collection #1" exposed nearly 800 million email addresses and millions of passwords. Security expert Troy Hunt was alerted of the leaked data made available for free download from popular MEGA cloud storage service. The data consisted of over 12,000 separate files and more than 87GB of data.
Cisco issued a critical security update that fixes a default password vulnerability (CVE-2018-15427) in its Video Surveillance Manager software.
Reddit, a popular social news aggregation and discussion website, suffered from a security breach between June 14 and June 18 this year.
Gentoo provided a new security update that describes the impact and root cause of its recent GitHub Linux distribution repository hacking incident.
Twitter urged users on Thursday to reset their passwords after the company discovered a critical flaw in how passwords were stored unmasked in internal logs.
The Department of Homeland Security (DHS) and the Federal Bureau of Investigation (FBI) are releasing a warning related to brute force attacks.
Talos security researchers have spotted a new family of malware dubbed "GoScanSSH" that compromises internet-facing SSH servers. The malware targets default and weak passwords via a brute force attack on SSH systems that allow password-based SSH authentication.
Google Project Zero researcher Tavis Ormandy discovered a password manager dubbed "Keeper" that comes pre-installed by default with a vulnerability in new Windows 10 Anniversary Update (Version 1607).