Troy Hunt
Massive ‘New’ Leaked Credentials List: Naz.API Pwns Troy
Have I been pwned? Yes, you probably have. Stop reusing passwords, already. Here’s what else you should do ...
The Security Pros and Cons of Using Email Aliases
One way to tame your email inbox is to get in the habit of using unique email aliases when signing up for new accounts online. Adding a "+" character after the username ...
Troy Hunt Flags Up ‘Sensational’ Sextortion Bug in Grindr
Grindr, the popular dating app, had a ridiculous bug in its password-recovery flow. To make matters worse, Grindr ignored the bug for a week ...
Ukraine Nabs Suspect in 773M Password ‘Megabreach’
In January 2019, dozens of media outlets raised the alarm about a new “megabreach” involving the release of some 773 million stolen usernames and passwords that was breathlessly labeled “the largest collection ...
More Than 140GB of Data Exposed by Israeli Marketing Company
An Israeli marketing company exposed more than 140GB of data by mishandling the credentials for an Elasticsearch database. A San Diego-based DevOps engineer who uses the Twitter handle 0m3n detected the disclosure ...
773M Password ‘Megabreach’ is Years Old
My inbox and Twitter messages positively lit up today with people forwarding stories from Wired and other publications about a supposedly new trove of nearly 773 million unique email addresses and 21 ...
A Breach, or Just a Forced Password Reset?
Software giant Citrix Systems recently forced a password reset for many users of its Sharefile content collaboration service, warning it would be doing this on a regular basis in response to password-guessing ...
Vehicle Infotainment Privacy, Instagram’s Accidental Password Exposure, Firefox Monitor – WB44
This is your Shared Security Weekly Blaze for November 26th 2018 with your host, Tom Eston. In this week’s episode: Vehicle infotainment privacy, Instagram’s accidental password exposure, and the Firefox monitor data ...
