OK, with the help of someone smarter than me, I have decided to create a Monero wallet to accept XMR donations. If you want to support this site’s work, please donate. This site does not receive any corporate financial sponsorship and yes, after 15 years of paying fees to host and run PogoWasRight.org and DataBreaches.net,…
Category: Commentaries and Analyses
Here’s what happened when a major cyber attack took Triangle tech firm Bandwidth offline
Zachary Eanes reports: For the first time since a cyber attack hit Raleigh tech firm Bandwidth, the company’s CEO, David Morken, publicly addressed the fallout from the event, saying his company did not pay a ransom before beating back its hackers. In late September, Bandwidth, which makes software for internet-based voice and text communication, suffered a DDoS…
CISA urges vendors to patch BrakTooth bugs after exploits release
Sergiu Gatlan reports: Researchers have released public exploit code and a proof of concept tool to test Bluetooth devices against System-on-a-Chip (SoC) security bugs impacting multiple vendors, including Intel, Qualcomm, Texas Instruments, and Cypress. Collectively known as BrakTooth, these 16 flaws impact commercial Bluetooth stacks on over 1,400 chipsets used in billions of devices such as…
US sanctions four companies selling hacking tools, including NSO Group & Candiru
Catalin Cimpanu reports: The US government has sanctioned today four companies that develop and sell spyware and other hacking tools, the US Department of Commerce announced today. The four companies include Israel’s NSO Group and Candiru, Russian security firm Positive Technologies, and Singapore-based Computer Security Initiative Consultancy. Read more on The Record.
UK: Are monetary penalties really a deterrent to data protection violations if few companies actually pay up?
I received an email today that made me think. It promised not to bother me about cottage cheese (see the Footer for context), and indeed, it offered me something of substance with no money exchanging hands at all. It seems TheSMSWorks had followed up on monetary penalties levied by the U.K.’s Information Commissioner’s Office and…
Jukin Media hacked and data dumped; company claims a password reset is required due to a “security upgrade”
On Wednesday, Jukin Media posted a notice on its site requiring users to reset their passwords. They said the reset was due to a “security upgrade.” By now, whenever I see announcements about what seems to be an unplanned or unscheduled reset, I suspect a breach, so I reached out to Jukin Media’s Twitter team…