Qualcomm patches 6 security flaws in a Snapdragon DSP used in most Android phones, which allowed attackers to take over a phone without needing user interaction Techmeme · 6 days ago
Twitter fixes a bug in its Android app that could let hackers access private data like DMs; 96% of the apps' users currently use a patched version of Android Techmeme · 1 week ago
Camera maker Canon struck by apparent ransomware attack resulting in data loss for users of its free cloud storage and affecting many of its website domains Techmeme · 1 week ago
Microsoft has awarded $13.7M to security researchers who reported vulnerabilities in the last 12 months through 15 bug bounty programs, up from $4.4M last year Techmeme · 1 week ago
Hacker shares data stolen on 18 companies, like Dave and Wattpad, on a forum for free, including 9 previously unreported breaches of Havenly, Indaba Music, more Techmeme · 2 weeks ago
Source code leaked from exposed repos of many companies including Nintendo, Daimler AG, Microsoft, Adobe, Lenovo, and AMD; unclear how much of it is proprietary Techmeme · 2 weeks ago
Study finds 15B credentials in circulation on hacker forums with 5B+ of them unique; average price of logins for banking and other financial services is $70.91 Techmeme · 1 month ago
Researchers say that attackers have been bypassing e-commerce sites' Content Security Policy with a method using Google Analytics API, to scrape payment info Techmeme · 2 months ago
Microsoft is aware of a bug affecting Windows 10 PCs with a printer connected via USB that renders the USB port unusable; patch is coming in a future OS update Techmeme · 2 months ago
Maze ransomware operators successfully attacked Conduent, a NJ-based business services company, for 10 hours, possibly due to Citrix NetScaler vulnerability Techmeme · 2 months ago
NSA warns Russia-linked Sandworm hacking group has been actively exploiting a now-patched flaw in Exim mail transfer agent since Aug., exposing ~2.5M servers Techmeme · 3 months ago
ShinyHunters claims to have stolen 500GB+ of data from Microsoft's private GitHub repositories; Microsoft says it is investigating the claims Techmeme · 3 months ago
Toll Group, one of Asia Pacific's top logistics companies with ~44,000 employees in 50+ countries, has been hit with ransomware for a second time this year Techmeme · 3 months ago
Security firm buys a database, first seen last month, with info on 267M+ mostly US Facebook users, including full names and phone numbers, for £500 on dark web Techmeme · 4 months ago
Microsoft issues fixes for 15 "critical" and 93 "important" flaws, including four Windows zero-days, three of which it says have been actively exploited Techmeme · 4 months ago
Credentials for 500,000+ Zoom accounts are being sold on the dark web and hacker forums for less than a penny each, and in some cases, given away for free Techmeme · 4 months ago
A new Zoom update hides meeting ID numbers in videoconference call title bars by default, preventing accidental dissemination of meeting IDs with screenshots Techmeme · 4 months ago
NetMarketShare: Microsoft Edge becomes the second most popular desktop browser for the first time, with a market share of 7.59%, beating Mozilla Firefox's 7.19% Techmeme · 4 months ago
Zoom Windows client vulnerability could allow attackers to steal Windows login credentials of users who click on malicious links in chat messages Techmeme · 4 months ago
Researcher: a vulnerability affecting iOS 13.3.1 and later prevents VPNs from encrypting all traffic, potentially exposing user data or leaking IP addresses Techmeme · 5 months ago