09 May 2019

New leaks of Iranian cyber-espionage operations hit Telegram and the Dark Web

For the second time in three weeks, leaked data exposes Iranian hacking operations. Last month, a mysterious actor using the moniker Lab Dookhtegan leaked information on the state-backed Iranian hacking group APT34 (aka OilRig, HelixKitten) through a Telegram channel. Now, a group using the name Green Leakers has leaked information

Read More
09 May 2019

Over 275 Million Records Exposed by Unsecured MongoDB Database

Once again, a security researcher has found an unprotected database exposing the personal data of hundreds of millions of people. The leaky database, which had been online since at least April 23, contained 275,265,298 records of Indian citizens, including their name, gender, date of birth, email, mobile phone number and

Read More
30 Apr 2019

Unknown Data Breach Exposes 80 Million US Households

Researchers with vpnMentor have stumbled upon an unsecured database that contains sensitive information on 80 million US households, which is 65% of total households. Unfortunately, the database doesn’t contain any hints as to who owns it, so the researchers don’t know which organization is exposing people’s data. The database consists of

Read More
30 Apr 2019

Dark Web-leaked banking credentials leap 129 percent

IntSights has released a new report on the threat landscape for the financial sector. It shows that the number of compromised banking credentials surged last year, and the same is true for stolen credit card details. Over one-fourth (25.7%) of malware attacks in 2018 targeted businesses offering financial services, making

Read More
23 Apr 2019

A hotspot finder app exposed 2 million Wi-Fi network passwords

A security researcher with the GDI Foundation has found an unsecured database that exposed over 2 million Wi-Fi network passwords. The database has now been taken down by the host upon request of the researcher, who initially reached out to the app’s developer, but received no response. The leaky server

Read More
19 Apr 2019

Hacker Group Exposes Iranian APT Operations and Members

Since the end of last month, a mysterious actor using the moniker Lab Dookhtegan has been leaking information on the state-backed Iranian hacking group APT34 (aka OilRig, HelixKitten) through a Telegram channel. The leaked information provides insights into the infrastructure of APT34, its members, the tools they use and the

Read More
19 Apr 2019

Unsecured Databases Leak 60 Million Records of Scraped LinkedIn Data

A security researcher with GDI foundation has found eight unprotected databases exposing 60 million records of LinkedIn user data. In addition to LinkedIn profile information, the data includes the email address of users, even of those who have configured their LinkedIn privacy settings so that only their direct connections can

Read More
19 Apr 2019

Facebook admits to storing plaintext passwords for millions of Instagram user

For the second time this week, and the umpteenth time in the past 12 months, Facebook has made the news due to a massive privacy blunder. In an unwelcome sequel to a March statement by the company that it had stored between 200 million and 600 million plain text user

Read More
18 Apr 2019

Facebook uploaded 1.5 million people’s email contacts without permission

On Wednesday, a new chapter was added to the seemingly never-ending story of Facebook privacy snafus when the social media giant admitted that the email contacts of up to 1.5 millions users were “unintentionally uploaded to Facebook when they created their account.” Ironically, the discovery was made when the company

Read More
12 Apr 2019

EU Citizens’ Hit by UK Government Data Leak

In two separate incidents this week, the UK Home Office inadvertently revealed private information on hundreds of UK and EU citizens. In a first incident, 500 email addresses of UK citizens from countries belonging to the Commonwealth were leaked. The second incident involved the inadvertent exposure of 240 email addresses

Read More