Experts challenge Yahoo’s assertion that state-sponsored hackers were behind a 2014 breach that resulted in 500 million lost records.
Crypto company Venafi points out potential holes in Yahoo’s processes and policies around cryptography and digital certificates, any of which could have been exploited in the breach to move data off the Yahoo network.
Yahoo confirmed that in 2014 state-sponsored hackers stole information associated with 500 million accounts from its network.
Yahoo is expected to confirm a data breach that exposed hundreds of millions of credentials dating back to 2012.
Yahoo says that it is investigating an alleged massive breach of its users’ credential that are available for sale online.
Mike Mimoso and Chris Brook recap the news of the week, including a Bitcoin phishing campaign, the Kaspersky Lab ransomware report, misconfigured email servers, and a decline in Angler exploit kit traffic.
Google has simplified its 2-step verification feature with a basic prompt users can take advantage of as a second form of authentication.
Citrix Systems is forcing all its GoToMyPC remote desktop access service customers to reset their passwords because of a “very sophisticated attack” that targeted the service over the weekend.
Password reuse strikes GitHub users, some of whom will have to reset their credentials after unauthorized attempts were made to access a large number of GitHub accounts.
Popular code repository site GitHub is warning that a number of users’ accounts have been compromised by unknown hackers reusing email addresses and passwords obtained from other recent data breaches.
Yes, GitHub has become the latest target of a password reuse attack after Facebook CEO Mark Zuckerberg and Twitter.
According to a blog post published by Shawn Davenport, VP of Security at