A week in security (April 1 – 7)

Credit to Author: Malwarebytes Labs| Date: Mon, 08 Apr 2019 15:52:47 +0000

A roundup of cybersecurity news from April 1–7, including global data privacy laws, water plant cybersecurity, and the mysterious story of a 23-year-old woman’s visit to the Mar-a-Lago resort in Florida.

Categories:

Tags:

(Read more…)

The post A week in security (April 1 – 7) appeared first on Malwarebytes Labs.

Read more

Facebook’s plain text misstep, and other password sins

Credit to Author: William Tsing| Date: Wed, 27 Mar 2019 15:00:00 +0000

Yes, Facebook’s recent error in password handling was egregious. But there’s more than one way to abuse user data. We take a look at various missteps in credential management and how businesses can improve practices.

Categories:

Tags:

(Read more…)

The post Facebook’s plain text misstep, and other password sins appeared first on Malwarebytes Labs.

Read more

Yabba dabba doo!

Credit to Author: Sharky| Date: Tue, 19 Feb 2019 03:00:00 -0800

Fish is being onboarded as a software engineer and has to download the code repository and start building it. But in checking the setup guide, he can’t find any instructions on what user credentials to use to log in. This seems like something he should be able to figure out, so he trolls through multiple document systems (internal websites, Google documents and wikis) until he finds an old document that says to use his username as both username and password for version control access. That’s easy enough — but it doesn’t work. Fish gets a message saying his account wasn’t found or the password didn’t match.

Time to submit a help desk ticket. And the explanation is simple. IT had neglected to run the script that created an account for fish in the version control system. Ten minutes after submitting the ticket, fish is in at last.

To read this article in full, please click here

Read more

Collection 1 data breach: what you need to know

Credit to Author: Malwarebytes Labs| Date: Fri, 18 Jan 2019 18:33:40 +0000

In what’s being dubbed one of the largest data dumps in history, Collection 1 contains the data of over 770 million people. But is it really as bad as it sounds? We take a closer look and let users know what to do if their info is caught up in the mix.

Categories:

Tags:

(Read more…)

The post Collection 1 data breach: what you need to know appeared first on Malwarebytes Labs.

Read more

A week in security (January 7 – 13)

Credit to Author: Malwarebytes Labs| Date: Mon, 14 Jan 2019 16:45:37 +0000

A roundup of last week’s security news from January 7 to 13, including breaches, takedowns, bug fixes, and social media issues.

Categories:

Tags:

(Read more…)

The post A week in security (January 7 – 13) appeared first on Malwarebytes Labs.

Read more

A week in security (December 10 – 16)

Credit to Author: Malwarebytes Labs| Date: Mon, 17 Dec 2018 17:58:31 +0000

A roundup of last week’s security news from December 10–16, including facial recognition technology, abandoned USB sticks, even more trouble at Facebook, Google bugs, and more.

Categories:

Tags:

(Read more…)

The post A week in security (December 10 – 16) appeared first on Malwarebytes Labs.

Read more

Is FIDO the future instrument to prove our identity?

Credit to Author: Pieter Arntz| Date: Wed, 17 Oct 2018 16:52:03 +0000

FIDO, which stands for Fast Identity Online, is set of standards that enable simpler and more secure user authentication across websites and mobile services. Does this mean the end of passwords? Time will tell.

Categories:

Tags:

(Read more…)

The post Is FIDO the future instrument to prove our identity? appeared first on Malwarebytes Labs.

Read more