A researcher found that it was possible to subvert the platform’s password recovery mechanism and take control of user accounts. An independent researcher has found a security loophole in Instagram’s mobile password recovery flow that could have allowed attackers to break into user accounts. The flaw, discovered and reported by India-based researcher Laxman Muthiyah, has since … More How your Instagram account could have been hijacked
No business, whether large or small, can afford to ignore cybersecurity, and the pressure to protect businesses is mounting as cybercriminals hone their skills to target a company’s weakest points. While bigger corporations generally have large IT departments to respond to evolving threats such as crypto-jacking and ransomware attacks, small and medium-sized enterprises (SMEs) don’t … More Keeping your business safe
A reflection on whether this approach to addressing IoT security challenges can ‘deliver the goods’ and how consumer awareness can help. According to an article by the BBC, the United Kingdom’s Digital Minister Margot James is proposing legislation to introduce a new labelling system to show customers how secure an IoT product is. In order to … More The UK plans to legislate to secure IoT, but is it really the answer?
So, do you think you’ve been ‘pwned’? That’s the question to ask yourself. May 2nd is World Password Day, a day to reflect on just how vulnerable a poor password can leave you. As more and more of the processes and tools we use in our everyday lives shift to the online world, the number … More World Password Day: A day to review your defenses
The notorious six-digit string continues to ‘reign supreme’ among the most-hacked passwords. An analysis of the 100,000 most-commonly re-occurring breached passwords confirms that ‘123456’ is the undisputed king of atrocious passwords. Using data from Have I Been Pwned (HIBP), a website that allows users to check if their email addresses or passwords have appeared in a known … More Over 23 million breached accounts used ‘123456’ as password
Some users of Microsoft’s web-based email services such as Outlook.com had their account information exposed in an incident that, as it later emerged, also impacted email contents. Microsoft has acknowledged a security incident that, for almost three months, gave hackers access to information related to an unknown number of email accounts on the tech giant’s … More Microsoft reveals breach affecting webmail users
The new wireless security protocol contains multiple design flaws that hackers could exploit for attacks on Wi-Fi passwords. WPA3, a new Wi-Fi security protocol launched in June 2018, suffers from vulnerabilities that make it possible for an adversary to recover the password of a wireless network via “efficient and low cost” attacks, according to a new academic … More WPA3 flaws may let attackers steal Wi-Fi passwords