Researcher hijacks popular Packagist PHP packages to get a job
A researcher hijacked over a dozen Packagist packages—with some having been installed hundreds of millions of times over the course of their lifetime. The researcher…
Category: Bleeping Computer
Brightline data breach impacts 783K pediatric mental health patients
Pediatric mental health provider Brightline is warning patients that it suffered a data breach impacting 783,606 people after a ransomware gang stole data using a…
Google adds passkeys support for passwordless sign-in on all accounts
Google is rolling out support for passkeys for Google Accounts across all services and platforms, allowing users to sign into their Google accounts without entering…
Google starts rolling out passkey support for Google Accounts
Google is rolling out support for passkeys for Google Accounts across all services and platforms, allowing users to sign into their Google accounts without entering…
Level Finance crypto exchange hacked after two security audits
Hackers exploited a Level Finance smart contract vulnerability to drain 214,000 LVL tokens from the decentralized exchange and swapped them for 3,345 BNB, worth approximately…
1Password explains scary Secret Key and password change alerts
1Password says a recent incident that caused customers to receive notifications about changed passwords was the result of service disruption and not a security breach.…
FBI seizes 9 crypto exchanges used to launder ransomware payments
The FBI and Ukrainian police have seized nine cryptocurrency exchange websites that facilitated money laundering for scammers and cybercriminals, including ransomware actors. In its announcement,…
Google will remove secure website indicators in Chrome 117
Google announced today that the lock icon, long thought to be a sign of website security and trustworthiness, will soon be changed with a new…
Apple and Google team up to fight Bluetooth tracker stalking
Apple and Google have joined forces to push for adopting new industry standards designed to stop stalking via Bluetooth-enabled location-tracking devices. The new draft specification unveiled…
PornHub blocked in Utah over SB287 age-verification law
Adult media creation company MindGeek has blocked access to its websites in Utah, including PornHub, Brazzers, RedTube, YouPorn, and Reality Kings, in response to a…
How To Secure Web Applications Against AI-assisted Cyber Attacks
Artificial intelligence (AI) has brought forth a new era of innovation, with its transformative impact being felt across various industries at an unprecedented pace. However,…
Hackers exploit 5-year-old unpatched flaw in TBK DVR devices
Hackers are actively exploiting an unpatched 2018 authentication bypass vulnerability in exposed TBK DVR (digital video recording) devices. DVRs are an integral part of security…