-
Email addresses of 15 million Trello users leaked on hacking forum
A threat actor has released over 15 million email addresses associated with Trello accounts that were collected using an unsecured API in January.
- July 16, 2024
- 01:57 PM
0
-
Home Depot confirms third-party data breach exposed employee info
Home Depot has confirmed that it suffered a data breach after one of its SaaS vendors mistakenly exposed a small sample of limited employee data, which could potentially be used in targeted phishing attacks.
- April 07, 2024
- 01:40 PM
0
-
Sponsored Content
Free shadow SaaS inventory + security insightsDiscover all SaaS accounts ever created by anyone in your org, in minutes, along with insights on security risks and spend. Save time, money and effort by curbing SaaS sprawl and automating tasks like offboarding and user access reviews. Free trial.
-
Trello API abused to link email addresses to 15 million accounts
An exposed Trello API allows linking private email addresses with Trello accounts, enabling the creation of millions of data profiles containing both public and private information.
- January 23, 2024
- 04:31 PM
- 0
-
China claims it cracked Apple's AirDrop to find numbers, email addresses
A Chinese state-backed research institute claims to have discovered how to decrypt device logs for Apple's AirDrop feature, allowing the government to identify phone numbers or email addresses of those who shared content.
- January 09, 2024
- 04:46 PM
- 0
-
Scraped data of 2.6 million Duolingo users released on hacking forum
The scraped data of 2.6 million DuoLingo users was leaked on a hacking forum, allowing threat actors to conduct targeted phishing attacks using the exposed information.
- August 22, 2023
- 06:50 PM
- 3
-
Hackers exploited Salesforce zero-day in Facebook phishing attack
Hackers exploited a zero-day vulnerability in Salesforce's email services and SMTP servers to launch a sophisticated phishing campaign targeting valuable Facebook accounts.
- August 02, 2023
- 09:52 AM
- 1
-
Hacker claims to be selling Twitter data of 400 million users
A threat actor claims to be selling public and private data of 400 million Twitter users scraped in 2021 using a now-fixed API vulnerability. They're asking $200,000 for an exclusive sale.
- December 26, 2022
- 03:44 PM
- 4
-
Comcast Xfinity accounts hacked in widespread 2FA bypass attacks
Comcast Xfinity customers report their accounts being hacked in widespread attacks that bypass two-factor authentication. These compromised accounts are then used to reset passwords for other services, such as the Coinbase and Gemini crypto exchanges.
- December 22, 2022
- 02:32 PM
- 15
-
5.4 million Twitter users' stolen data leaked online — more shared privately
Over 5.4 million Twitter user records containing non-public information stolen using an API vulnerability fixed in January have been shared for free on a hacker forum. Another massive, potentially more significant, data dump of millions of Twitter records has also been disclosed by a security researcher.
- November 27, 2022
- 01:31 PM
- 7
-
New MailChimp breach exposed DigitalOcean customer email addresses
DigitalOcean is warning customers that a recent MailChimp security breach exposed the email addresses of some customers, with a small number receiving unauthorized password resets.
- August 16, 2022
- 12:46 PM
- 1
-
Twitter confirms zero-day used to expose data of 5.4 million accounts
Twitter has confirmed a recent data breach was caused by a now-patched zero-day vulnerability used to link email addresses and phone numbers to users' accounts, allowing a threat actor to compile a list of 5.4 million user account profiles.
- August 05, 2022
- 12:00 PM
- 1
-
Hacker selling Twitter account data of 5.4 million users for $30k
Twitter has suffered a data breach after threat actors used a vulnerability to build a database of phone numbers and email addresses belonging to 5.4 million accounts, with the data now up for sale on a hacker forum for $30,000.
- July 22, 2022
- 06:00 PM
- 1
-
Firefox Relay gets added to disposable email blocklist, angers users
The maintainers of a "disposable email service" blocklist have decided to add Firefox Relay to the list, leaving many users of the service upset. Firefox Relay is a privacy-centric email service that enables users to protect their real email addresses and hence limit spam.
- January 17, 2022
- 02:33 PM
- 4
-
Attackers can hide 'external sender' email warnings with HTML and CSS
The "external sender" warnings shown to email recipients by clients like Microsoft Outlook can be hidden by the sender, as demonstrated by a researcher. Turns out, all it takes for attackers to alter the "external sender" warning, or remove it altogether from emails is just a few lines of HTML and CSS code.
- April 22, 2021
- 06:18 AM
- 6
-
Physical addresses of 270K Ledger owners leaked on hacker forum
A threat actor has leaked the stolen email and mailing addresses for Ledger cryptocurrency wallet users on a hacker forum for free.
- December 21, 2020
- 02:15 AM
- 0
-
Coil payments platform leaks user emails in 'Privacy Policy' update
Micropayments platform Coil, used by content creators and popular blogs accidentally exposed the email addresses of some users in a mass email announcement.
- November 17, 2020
- 09:11 AM
- 1
-
Microsoft: Disposable emails now available in Exchange Online
Microsoft says that Office 365 customers can use unlimited disposable recipient email addresses after the Plus Addressing feature rolled out to all Exchange Online users.
- October 27, 2020
- 05:31 PM
- 2
-
New service checks if your email was used in Emotet attacks
A new service has been launched that allows you to check if an email domain or address was in an Emotet spam campaign.
- October 01, 2020
- 01:21 PM
- 0
-
Microsoft Office 365 will add support for disposable emails
Microsoft will provide Office 365 customers with support for using disposable email addresses to make it simpler to manage their inboxes and to keep track of email campaigns.
- July 13, 2020
- 01:38 PM
- 1
-
Twitter Apologizes for Using Your Phone Number for Advertising
Twitter says that some of its users' phone numbers and email addresses provided for account security like two-factor authentication may have been used accidentally for ad targeting.
- October 08, 2019
- 05:05 PM
- 2
- 1
- 2
