The Marriott hotel group has been hacked again for the 2nd time in 2 years. Marriott’s rewards scheme company Bonvoy – which holds contact details (name, mailing address, email address, and phone number); loyalty account information; additional personal details; partnerships and affiliations; and preferences Hotels that data was exposed. Marriott notified customers: “Marriott International announced […]
“Password data and other personal information belonging to as many as 2.2 million users of two websites—one a cryptocurrency wallet service and the other a gaming bot provider—have been posted online, according to Troy Hunt, the security researcher behind the Have I Been Pwned breach notification service. One haul includes personal information for as many […]
A Spanish brothel chain running “men’s clubs” in Barcelona and Valencia has left a database exposed online without a password, leaking troves of sensitive information such as details for thousands of escort girls, customer reviews, and the club’s very own financial details. The compromised server exposed the details of 3,350 escort girls who worked or […]
More than 1.5 million users of a group dating service had their personal data exposed — including their real-time location — because of a vulnerability in the app. The app, 3fun, bills itself as a “private space” where you can meet “local kinky, open-minded people.” But the data wasn’t private at all. Ken Munro, founder […]
CafePress, the custom T-shirt and merchandise company, acquired by Snapfish for more than $25 million (£20 million) in November 2018, has been hacked. According to various reports, the breach that compromised more than 23 million accounts happened on February 20. […]
Facebook is planning to link Whatsapp, Instagram and Facebook Messenger together to allow users to message contacts across the three platforms. Facebook is planning to merge all these services together to build a larger collective user-base to rival that of Apple’s iMessage or Google’s messaging services. It’s long been a direction that Zuckerberg has wanted […]
Definition Credential Stuffing (also known as Attack Takeover – ATO); is an automated brute force hacking technique where an attacker uses scripts to try to gain access to a website/service/database, using data gathered from historic data breaches and custom built word lists. Hackers are continually searching for or buying login information with decrypted passwords from […]
Facebook recently disclosed that a bug may have affected 6.8 million users, exposing their photos to third-party apps. The social networking site said the bug lived for 12 days in September. To check whether an account had been affected, Facebook dedicated a page where users can log in and see if their pictures had been exposed. It […]
Google+ was scheduled to shut its doors in August 2019, but the second security breach in only a few months has caused the company to move its plan forward a few months to April. In that case, it might be a good idea to delete your account sooner rather than later. Google’s latest data breach […]
Victims of the massive Marriott International data breach, which exposed data for 500 million customers, including some passport numbers, may be able to claim for a new passport. Marriott made the statement to The Washington Post mirroring the GDPR stipulations that “if citizens can prove material or non-material damage” they can seek compensation. Out of […]