Troy Hunt

JANUARY 1, 2021

Ok, so these may not be 2021 breaches but I betcha that by next week's update there'll be brand new ones from the new year to discuss. I'll talk more about the last past of the trip then as well as those all new fresh 2021 data breaches I'm sure we'll have by Friday. It's a new year! With lots of breaches to discuss already ?

Data breaches 335

Data breaches Password Management Scams Passwords 335

Duo's Security Blog

SEPTEMBER 14, 2021

That Was Then, This is Now 2FA Usage Continues its Climb Two-factor authentication has become notably more prevalent over the last two years, with 79% of respondents reporting having used it in 2021, compared to 53% in 2019 and 28% in 2017. Explore our complete findings by downloading the 2021 State of the Auth report.

Password Management 105

Password Management Passwords Authentication Accountability 105

SecureWorld News

FEBRUARY 20, 2025

Prioritize fixing vulnerabilities exploited by Ghost, such as ProxyShell (CVE-2021-34473, CVE-2021-34523, CVE-2021-31207). Use Privileged Access Management (PAM) solutions. Require 16+ character unique passwords stored in an enterprise password manager.

Ransomware 113

Ransomware IoT Encryption Social Engineering 113

Security Affairs

APRIL 25, 2021

The software company Click Studios was the victim of a supply chain attack, hackers compromised its Passwordstate password management application. Manager hase? Informacja od Tajemniczego Pedro) pic.twitter.com/PGHhmEKpje — Niebezpiecznik (@niebezpiecznik) April 23, 2021. PasswordState zosta? Pierluigi Paganini.

Password Management 107

Password Management Passwords Software Malware 107

Troy Hunt

SEPTEMBER 3, 2021

let's link back to it here, just for Streisand's sake 🙂) 1 BILLION queries on Pwned Passwords in a month!

Password Management 274

Password Management Passwords Data breaches 274

Troy Hunt

AUGUST 29, 2023

We provided similar support in 2021 with the Emotet botnet , although this time around with a grand total of 6.43M impacted email addresses. If you're reusing passwords across services, get a password manager and change them to be strong and unique.

Malware 346

Malware Passwords Password Management Antivirus 346

Troy Hunt

NOVEMBER 28, 2021

pic.twitter.com/IvUt6lBJRr — Troy Hunt (@troyhunt) November 24, 2021 No major things in this weeks update, but plenty of things on all the above topics and more. It's been a busy week with lots of little bits and pieces demanding my attention.

Password Management 283

Password Management IoT Passwords 283

Troy Hunt

JANUARY 28, 2021

Well, it kinda feels like we're back to the new normal that is 2021. I'm home, the kids are back at school and we're all still getting breached. We're breached so much that even when we're not breached but someone says we're breached, it genuinely looks like we're breached.

Password Management 281

Password Management Phishing IoT Data breaches 281

Malwarebytes

APRIL 29, 2022

CVE-2021-44228 , commonly referred to as Log4Shell or Logjam. The Cybersecurity and Infrastructure Security Agency (CISA) has launched an open source scanner to find applications that are vulnerable to the Log4j vulnerabilities listed as CVE-2021-44228 and CVE-2021-45046. CVE-2021-40539.

Internet 137

Internet Internet Software Authentication 137

eSecurity Planet

JULY 8, 2021

Dashlane is a password management software that’s popular for business and personal uses alike. Like many other password managers, Dashlane makes it easy for users to create new passwords and store existing ones in a secure vault. Read next: Best Password Managers & Tools for 2021.

Password Management 98

Password Management Passwords Authentication Accountability 98

Troy Hunt

SEPTEMBER 17, 2021

register there and you'll be notified as soon as part of it are available) Sponsored by: 1Password is a secure password manager and digital wallet that keeps you safe online. If your address is in there - even if you didn't subscribe to the service - do you want @haveibeenpwned to notify you that they have your address?

Password Management 283

Password Management Passwords Authentication 283

Troy Hunt

JANUARY 22, 2021

and it's not the weirdest thing to happen so far in 2021.) Ubiquiti had a data breach that looks like it's impacted a lot of customers (their messaging around the incident hasn't been great, and it's something I've pushed them on) Sponsored by: 1Password is a secure password manager and digital wallet that keeps you safe online.

IoT 219

IoT Data breaches Password Management Passwords 219

Security Affairs

SEPTEMBER 16, 2021

The FBI, CISA, and the Coast Guard Cyber Command (CGCYBER) warn of state-sponsored attacks that are actively exploiting CVE-2021-40539 Zoho flaw. ManageEngine ADSelfService Plus is self-service password management and single sign-on solution. ” reads the joint advisory. ” reads the joint advisory. Pierluigi Paganini.

Password Management 130

Password Management Passwords Authentication Cyber threats 130

Approachable Cyber Threats

MAY 6, 2021

Hackers also use lists of common passwords like these to crack them instantly, so make sure you don't use anything similar to these! Lastly, for World Password Day 2021, once you have your new passwords, you'll want a better way to remember them, and the best way is with a password manager! Learn More.

Passwords 108

Passwords Password Management Cyber threats Cybersecurity 108

Malwarebytes

AUGUST 26, 2022

There is no evidence that this incident involved any access to customer data or encrypted password vaults. LastPass offers a password manager which is reportedly used by more than 33 million people and 100,000 businesses around the world. It also generates strong passwords. Stolen passwords.

Password Management 78

Password Management Passwords Encryption Accountability 78

eSecurity Planet

MAY 14, 2021

Dashlane and 1Password are two of our top picks for password managers in 2021. They offer many similar features, including password generation, automatic form-filling, password analysis, and dark web monitoring. Both tools make it easy for users to create and store passwords and share them safely with other users.

Password Management 58

Password Management Passwords Mobile Accountability 58

CyberSecurity Insiders

SEPTEMBER 30, 2022

Astonishingly, most of the information steals cases where or are yet to be solved and surged to 55% from 30% between 2020 to 2021. Just by creating awareness among employees, using proactive security solutions, deploying MFA, using password managers can help in mitigating most of the cyber risks to a large extent. .

Identity Theft 117

Identity Theft Scams Passwords Password Management 117

eSecurity Planet

MAY 6, 2021

Dashlane and LastPass are two of the biggest names in password management software. They both provide businesses secure vaults for sensitive information, including passwords, credit card details, and personal identification numbers. It has long been regarded as a top password manager for both personal and professional use.

Password Management 64

Password Management Passwords VPN Authentication 64

Troy Hunt

APRIL 2, 2021

Taking place in Saudi Arabia, 2021. Sponsored by: @Hack – from the masterminds behind Black Hat. Watch this space.

Password Management 223

Password Management Passwords Hacking Software 223

Security Affairs

NOVEMBER 8, 2021

Experts warn of an ongoing hacking campaign that already compromised at least nine organizations worldwide from critical sectors by exploiting CVE-2021-40539. In the middle of September, the FBI, CISA, and the Coast Guard Cyber Command (CGCYBER) warned that nation-state APT groups were actively exploiting the CVE-2021-40539 flaw.

Healthcare 120

Healthcare Password Management Financial Services Surveillance 120

Cisco Security

MAY 21, 2021

“Two thirds of the CIOs in all the organizations have said that post-pandemic they will spend more on security investments, and projects that used to take years now take weeks or months”. – Chuck Robbins, Chairman and Chief Executive Officer, Cisco, RSAC 2021 keynote presentation. In Conclusion. What were your observations?

Authentication 125

Authentication Architecture Digital transformation Password Management 125

Krebs on Security

MAY 4, 2021

For example, it is often the denizens of the cybercrime underground who pick crappy passwords for their forum accounts who end up doing their future selves a favor when the forum eventually gets hacked and its user database is posted online. It really stinks that it’s mid-2021 and we’re still so reliant on passwords.

Passwords 345

Passwords Cybercrime Accountability Password Management 345

SecureBlitz

NOVEMBER 16, 2021

Are you looking for the best Cybersecurity Black Friday deals for 2021? The post Best Cybersecurity Black Friday Deals For 2021 appeared first on SecureBlitz Cybersecurity. Look no further. SecureBlitz is your hub for the best cybersecurity deals and offers. Without further delay, check out available cybersecurity Black Friday.

Cybersecurity 111

Cybersecurity Password Management Antivirus VPN 111

The Last Watchdog

MAY 26, 2021

We celebrated World Password Day on May 6, 2021. Every year, the first Thursday in May serves as a reminder for us to take control of our personal password strategies. A password that contains only lowercase letters of a simple phrase is much more vulnerable than a complex combination of different characters.

Passwords 182

Passwords Password Management Accountability Authentication 182

Bleeping Computer

SEPTEMBER 16, 2021

The FBI, CISA, and the Coast Guard Cyber Command (CGCYBER) today warned that state-backed advanced persistent threat (APT) groups are likely among those exploiting a critical flaw in a Zoho single sign-on and password management solution since early August 2021. [.].

Password Management 118

Password Management Passwords 118

Heimadal Security

DECEMBER 3, 2021

You may recall that we reported a while ago that state-backed advanced persistent threat (APT) organizations had been actively exploiting a significant hole in a Zoho single sign-on and password management solution since early August 2021. What Happened?

Password Management 119

Password Management Passwords Cybersecurity 119

Malwarebytes

MARCH 25, 2025

Though the company was valued at a reported $6 billion in 2021, its genetic testing businessin which customers can have their saliva tested for insights into their genealogy and potential health riskshas faltered. SCAN NOW If your data was exposed in the 23andMe breach, here is what you can do: Change your password. What is happening?

Passwords 113

Passwords Accountability Data breaches Phishing 113

Security Affairs

DECEMBER 28, 2021

Password manager app LastPass confirmed that threat actors have launched a credential stuffing attack against its users. “Someone just used your master password to try to log in to your account from a device or location we didn’t recognize,” reads the warnings.

Password Management 130

Password Management Passwords Accountability Authentication 130

Security Affairs

SEPTEMBER 26, 2021

In mid-September, the FBI, CISA, and the Coast Guard Cyber Command (CGCYBER) issued a joint advisory to warn that nation-state APT groups are actively exploiting a critical vulnerability, tracked as CVE-2021-40539 , in the Zoho ManageEngine ADSelfService Plus software. reads the joint advisory. reads the joint advisory.

Password Management 144

Password Management Cyber Attacks Passwords Authentication 144

CyberSecurity Insiders

DECEMBER 29, 2021

So, we’ve compiled the highest rated, ranked by your peers, (ISC)² cybersecurity webinars from 2021. As so many in-person events were cancelled in 2021, free webinars make it easy to complete your educational requirements and maintain your membership status. Practical steps to Privileged Access Management: Beyond Password Managers.

Cybersecurity 84

Cybersecurity Ransomware Password Management Education 84

The Last Watchdog

AUGUST 29, 2022

This data strongly indicates that password management and 2FA are crucial for any organization or startup to become more secure from web attacks. We’ve shared some helpful guidance on password security at Zigrin Security blog. Consequently, sensitive data can become compromised, ending up in the wrong hands.

Hacking 201

Hacking Passwords Password Management Data breaches 201

The Last Watchdog

MARCH 24, 2022

All it takes is a cracker to find this password, and now every account you have is compromised. And finding that password is even easier. Some studies show as many as 40 billion records were compromised in 2021. Many of those records are passwords. Thankfully, there is an easy solution: use a password manager.

Passwords 133

Passwords Password Management Banking Accountability 133

Heimadal Security

SEPTEMBER 9, 2021

ADSelfService Plus is designed for larger companies that require a single sign-on solution for Active Directory and cloud apps as well as integrated self-service password management. CVE-2021-40539 was attributed to the flaw, which is deemed serious since it allows an […].

Password Management 111

Password Management Passwords Cybersecurity 111

Krebs on Security

JULY 10, 2022

In both cases the readers used password managers to select strong, unique passwords for their Experian accounts. Turner said he created the account at Experian in 2020 to place a security freeze on his credit file, and that he used a password manager to select and store a strong, unique password for his Experian account.

Accountability 342

Accountability Passwords Authentication Password Management 342

The Hacker News

NOVEMBER 8, 2021

At least nine entities across the technology, defense, healthcare, energy, and education industries were compromised by leveraging a recently patched critical vulnerability in Zoho's ManageEngine ADSelfService Plus self-service password management and single sign-on (SSO) solution.

Password Management 101

Password Management Healthcare Education Passwords 101

SC Magazine

MARCH 19, 2021

While storing non-sensitive data in a browser is okay, it’s important that organizations move beyond password managers, such as those in browsers. It’s important to help move passwords into the background and that they are not the only security control protecting your business.”.

Malware 113

Malware Media Passwords Accountability 113

Security Affairs

SEPTEMBER 9, 2021

Zoho has released a security patch to address an authentication bypass vulnerability, tracked as CVE-2021-40539, in its ManageEngine ADSelfService Plus. US CISA also published a security advisory about the CVE-2021-40539 vulnerability. CVE-2021-40539 has been detected in exploits in the wild.

Authentication 130

Authentication Password Management Passwords Internet 130