We bring word of yet more data exposure, in the form of “nonsensitive” data scraping to the tune of 66m records across 3 large databases. The information was apparently scraped from various sources and left to gather dust, for anyone lucky enough to stumble upon it. What is data scraping? The gathering of information from websites either by manual means, which isn’t time optimal, or by automated … [Read more...]
December 11, 2018
December 5, 2018
Breaches, breaches everywhere, it must be the season
After last weeks shocker from Marriott this week started off with disclosures about breaches at Quora, Dunkin’ Donuts, and 1-800-Flowers. Quora Quora is an online community that focuses on asking and answering questions. It was founded in 2009 by two former Facebook employees. The stolen data may concern up to 100 million users of the platform and included the username, the email address, and the … [Read more...]
November 28, 2018
ESTA registration websites still lurk in paid ads on Google
Google has taken direct action against adverts promoting ESTA registration services, often offered by third parties at highly inflated prices. Ads displayed on the Google network shouldn’t display fees higher than what a public source or government charges for products or services. This tightening of the ad leash has taken a remarkable eight years to complete—and we argue it’s not done … [Read more...]
November 28, 2018
What is the right penetration test for you?
It seems like we hear about another data breach on a daily basis. Recognised companies such as Facebook, Ticketmaster and Dixons Carphone – to name but a few – have recently suffered at the hands of criminal hackers, who are gaining access to organisations’ networks using a variety of techniques. Penetration testing is a systematic process of probing for vulnerabilities in your applications and … [Read more...]
November 20, 2018
What DNA testing kit companies are really doing with your data
Sarah* hovered over the mailbox, envelope in hand. She knew as soon as she mailed off her DNA sample, there’d be no turning back. She ran through the information she looked up on 23andMe’s website one more time: the privacy policy, the research parameters, the option to learn about potential health risks, the warning that the findings could have a dramatic impact on her life. She paused, … [Read more...]
November 7, 2018
Google logins: JavaScript now required
Google users: In news that may sound alarming, it is now a requirement for you to enable JavaScript. Why? When your username and password are entered on Google’s sign-in page, Google runs a risk assessment and only allows the sign-in if nothing looks suspicious. Recently, Google went about improving this analysis and now requires JavaScript in order to run their assessment. Want to use some of … [Read more...]
November 7, 2018
Secure your infrastructure with a network penetration test
Penetration testing is a systematic process of probing for vulnerabilities in your applications and networks. It is essentially a controlled form of hacking in which the ‘attackers’ operate on your behalf to find the sorts of weaknesses that criminals exploit. Findings from a network penetration test could include the discovery of weak or default passwords, systems that are unpatched or poorly … [Read more...]
October 31, 2018
Tomorrowland festival goers affected by data breach
Tomorrowland, a major international music festival, has revealed a data breach potentially affecting around 60,000 attendees. This one is a little different though, as the data accessed without permission isn’t recent. In fact, it dates back four years to an event long since come and gone. According to a Tomorrowland spokesperson, the managers of the Paylogic ticketing system noticed … [Read more...]
October 31, 2018
October 31, 2018
