Daniel Miessler

MARCH 10, 2022

People are starting to get the fact that texts (SMS) are a weak form of multi-factor authentication (MFA). In that post we talked about 8 levels of password security, starting from using shared and weak passwords and going all the way up to passwordless. It completely changes how authentication is done.

Authentication 364

Authentication Phishing Passwords Accountability 364

Security Affairs

APRIL 22, 2025

. “There has been a sharp increase in the number of cases of unauthorized access and unauthorized trading (trading by third parties) on Internet trading services using stolen customer information (login IDs, passwords, etc.) from fake websites (phishing sites) disguised as websites of real securities companies.”

Financial Services 121

Financial Services Passwords Accountability Antivirus 121

Security Affairs

OCTOBER 21, 2024

The Internet Archive was breached again, attackers hacked its Zendesk email support platform through stolen GitLab authentication tokens. Internet Archive Zendesk emails sent by the threat actor Source: BleepingComputer The message highlights a poor security posture by the Internet Archive.

Internet 129

Internet Internet Data breaches Authentication 129

Security Affairs

OCTOBER 11, 2024

Starting from Wednesday, the website archive.org was displaying a message informing visitors that it was hacked. 31M records breached The breach exposed user records including email addresses, screen names and bcrypt password hashes. Hunt will add the information of the impacted users to HIBP very soon. Internet Archive hacked.

Data breaches 122

Data breaches Internet Internet DDOS 122

Security Affairs

OCTOBER 29, 2024

The two infostealers allowed operators to harvest usernames, passwords, contact info, and crypto-wallets from victims, the threat actors sold this data to criminals for financial theft and hacking. Use a password manager : Simplifies managing strong, unique passwords across accounts.

Identity Theft 126

Identity Theft Passwords Malware Banking 126

Daniel Miessler

MAY 14, 2020

What follows is a set of basic security hygiene steps that will significantly reduce your risk online. Use unique, strong passwords, and store them in a password manager. Many people get hacked from having guessable or previously compromised passwords. Enable two-factor authentication on all critical accounts.

Risk 345

Risk Passwords Password Management Accountability 345

Security Affairs

MARCH 29, 2024

Cisco warns customers of password-spraying attacks that have been targeting Remote Access VPN (RAVPN) services of Cisco Secure Firewall devices. Cisco is warning customers of password-spraying attacks that have been targeting Remote Access VPN (RAVPN) services configured on Cisco Secure Firewall devices.

Firewall 132

Firewall Passwords VPN Authentication 132

Security Affairs

FEBRUARY 16, 2025

” Device code phishing attacks exploit authentication flows to steal tokens, granting attackers access to accounts and data. Upon clicking the meeting invitation embedded in the message, recipients are prompted to authenticate using a threat actor-generated device code. ” continues the report.

Phishing 115

Phishing Authentication Telecommunications Accountability 115

Security Affairs

JULY 29, 2022

Passwords no longer meet the demands of today’s identity and access requirements. Therefore, strong authentication methods are needed. Therefore, strong authentication methods are needed. Passwords no longer meet the demands of today’s identity and access requirements. What is Strong Authentication?

Authentication 126

Authentication Passwords Data privacy Identity Theft 126

Security Affairs

NOVEMBER 20, 2021

The annual study on top-used passwords published by Nordpass revealed that we are still using weak credentials that expose us to serious risks. Nordpass has published its annual report, titled “Top 200 most common passwords,” on the use of passwords. The report shows that we are still using weak passwords.

Passwords 133

Passwords Data breaches Password Management Authentication 133

Security Affairs

MARCH 20, 2024

The Pokemon Company resets some users’ passwords in response to hacking attempts against some of its users. The Pokemon Company announced it had reset the passwords for some accounts after it had detected hacking attempts, Techcrunch first reported. The company was likely the target of credential stuffing attacks.

Passwords 132

Passwords Accountability Authentication Hacking 132

Security Affairs

MAY 2, 2025

” “New users will have several passwordless options for signing into their account and theyll never need to enroll a password. Existing users can visit their account settings to delete their password.”” The IT giant states that passkey users log in 3x more successfully and 8x faster than those using passwords.

Accountability 67

Accountability Passwords Social Engineering Authentication 67

Security Affairs

SEPTEMBER 16, 2023

Iran-linked Peach Sandstorm APT is behind password spray attacks against thousands of organizations globally between February and July 2023. Microsoft researchers observed a series of password spray attacks conducted by Iran nation-state actors as part of a campaign named Peach Sandstorm (aka Holmium , APT33 , Elfin , and Magic Hound ).

Passwords 138

Passwords Accountability Authentication Hacking 138

Security Affairs

NOVEMBER 13, 2024

Then, it re-encrypts the system using a randomly generated password. This unique password is uploaded to a server controlled by the attacker. The random password is generated from network traffic and memory data, making brute-forcing difficult.

Ransomware 123

Ransomware Encryption Passwords Backups 123

Security Affairs

NOVEMBER 15, 2024

Glove Stealer is a.NET-based information stealer that targets browser extensions and locally installed software to steal sensitive data. The malware could harvest a huge trove of data from infected systems, including cookies, autofill, cryptocurrency wallets, 2FA authenticators, password managers, and email client information.

Encryption 117

Encryption Password Management Cryptocurrency Social Engineering 117

SecureWorld News

DECEMBER 12, 2024

Trey Ford, Chief Information Security Officer at Bugcrowd, observed, "This incident may not have been made public if it wasn't for the Form 8-K requirement." Strong Password Management: Enforce strong, unique passwords and multi-factor authentication to protect against unauthorized access.

Password Management 109

Password Management Passwords CISO Cybersecurity 109

Security Affairs

JANUARY 30, 2025

.” The researchers noted that the leak could have allowed attackers to take full control of the database and potentially escalate privileges within the DeepSeek environment, without any authentication. “This level of access posed a critical risk to DeepSeeks own security and for its end-users.

Authentication 121

Authentication Passwords Hacking Risk 121

Security Affairs

JULY 17, 2024

A vulnerability in Cisco Smart Software Manager On-Prem (Cisco SSM On-Prem) license servers allows threat actors to change any user’s password. The issue is due to an improper implementation in the password-change process. “This vulnerability is due to improper implementation of the password-change process. .

Passwords 140

Passwords Software Authentication Hacking 140

Security Affairs

MAY 29, 2024

A credential stuffing attack is a type of cyber attack where hackers use large sets of username and password combinations, typically obtained from previous data breaches, phishing campaigns, or info-stealer infections, to gain unauthorized access to user accounts on various online services. ” reads advisory. ” reads advisory.

Authentication 126

Authentication Accountability Passwords Data breaches 126

Security Affairs

APRIL 18, 2025

RPAC (CVE-2025-31201) An attacker with read/write access could bypass Pointer Authentication on iOS. Security patches are available for the following devices: iPhone XS and later, iPad Pro 13-inch, iPad Pro 13.9-inch Attackers triggered the flaw to leak NTLM hashes or user passwords. ” Microsoft warns.

Authentication 103

Authentication Surveillance Passwords Media 103

Security Affairs

AUGUST 24, 2022

The streaming media platform Plex is urging its users to reset passwords after threat actors gained access to its database. Exposed data includes emails, usernames, and encrypted passwords. The company is urging all users to immediately reset account passwords and log out of all devices connected to its service.

Data breaches 136

Data breaches Passwords Media Accountability 136

Security Affairs

JANUARY 29, 2024

A flaw in Microsoft Outlook can be exploited to access NTLM v2 hashed passwords by tricking users into opening a specially crafted file. The vulnerability CVE-2023-35636 impacting Microsoft Outlook is a Microsoft Outlook information disclosure issue that could be exploited by threat actors to access NT LAN Manager (NTLM) v2 hashed passwords.

Passwords 138

Passwords Authentication Hacking Accountability 138

Security Affairs

JANUARY 25, 2025

The duo found Subaru’s admin panel hosted on a subdomain, allowing password resets for employee accounts without confirmation, bypassing two-factor authentication. Researchers used the valid employee email to reset the password, bypass two-factor authentication, and gain access to the panels functionality.

Hacking 126

Hacking Accountability Passwords Authentication 126

Security Affairs

NOVEMBER 29, 2024

Phishing tool Rockstar 2FA targets Microsoft 365 credentials, it uses adversary-in-the-middle (AitM) attacks to bypass multi-factor authentication. Rockstar 2FA targets Microsoft 365 accounts and bypasses multi-factor authentication with adversary-in-the-middle (AitM) attacks.

Phishing 114

Phishing Accountability Authentication Advertising 114

Security Affairs

NOVEMBER 2, 2024

is an inadequate authentication mechanisms that could allow an attacker to access sensitive information like usernames, MD5 password hashes, and configuration data. CVE-2024-8957 (CVSS score of CVSS 7.2) is an OS Command Injection.

Firmware 122

Firmware Manufacturing IoT Healthcare 122

Approachable Cyber Threats

OCTOBER 7, 2024

What changed, and what is NIST's updated password guidance and the role of password strength in 2024?” One area where best practices have evolved significantly over the past twenty years is password security best practices. What are the key takeaways from NIST's updated password guidance?”

Passwords 104

Passwords Password Management Authentication Risk 104

Webroot

MARCH 3, 2025

During this time, many government agencies and consumer protection organizations come together to help educate consumers on how to keep their personal and financial information secure. How to protect yourself and your data Smart ways to secure your devices Strong passwords – Make them long, random, and unique.

Consumer Protection 99

Consumer Protection Identity Theft Scams Social Engineering 99

Security Affairs

MAY 9, 2025

The first flaw, tracked as CVE-2025-32819 (CVSS score of 8.8), is a Post-Authentication SSLVPN user arbitrary file delete vulnerability. The second vulnerability, tracked as CVE-2025-32820 (CVSS score of 8.3), is a Post-Authentication SSLVPN user Path Traversal issue. ” reads the advisory. ” states the advisory.

Authentication 65

Authentication Passwords Hacking Accountability 65

Security Affairs

DECEMBER 17, 2024

Attackers also attempted to exploit weak vendor-supplied passwords. The threat actors attempted to exploit multiple vulnerabilities in DVRs, including CVE-2017-7921, CVE-2018-9995 , CVE-2020-25078, CVE-2021-33044 , and CVE-2021-36260. Targeted TCP ports included 23, 26, 554, 2323, 567, 5523, 8080, 9530, and 56575.

Architecture 109

Architecture Internet Internet Malware 109

Duo's Security Blog

JANUARY 26, 2024

In today’s complex IT landscape, one of the biggest problems faced by a Chief Information Security Officer (CISO) and their IT security team are forgotten and stolen passwords. On average, employees lose 11 hours per year resetting passwords and an average company spends ~$5M per year on setting and resetting passwords.

Passwords 93

Passwords Authentication Mobile CISO 93

Security Affairs

OCTOBER 24, 2024

The vulnerability is a missing authentication issue in FortiManager and FortiManager Cloud versions, an attacker could execute arbitrary code or commands through specially crafted requests. “A UNC5820 compromised FortiGate devices and exfiltrated the configuration data including the list of users and their FortiOS256-hashed passwords.

Authentication 132

Authentication Internet Internet Hacking 132

Security Affairs

APRIL 26, 2025

MTN urges customers to stay vigilant by placing fraud alerts, updating apps, using strong passwords, avoiding suspicious links, and enabling multifactor authentication. The company is going to notify impacted customers in compliance with local legal and regulatory obligations.

Data breaches 106

Data breaches Telecommunications Financial Services Mobile 106

Krebs on Security

APRIL 11, 2024

On April 10, Sisense Chief Information Security Officer Sangram Dash told customers the company had been made aware of reports that “certain Sisense company information may have been made available on what we have been advised is a restricted access server (not generally available on the internet.)”

CISO 312

CISO Encryption Telecommunications Financial Services 312

Krebs on Security

NOVEMBER 21, 2018

The researcher said he informed the USPS about his finding more than a year ago yet never received a response. “This is not even Information Security 101, this is Information Security 1, which is to implement access control,” Weaver said.

Accountability 279

Accountability Authentication Identity Theft Advertising 279

Security Affairs

NOVEMBER 5, 2024

It aims to bypass bank countermeasures used to enforce users’ identity verification and authentication, combined with behavioral detection techniques applied by banks to identify suspicious money transfers.” ” reads the report published by Cleafy.

Banking 122

Banking Malware Accountability Authentication 122

Security Affairs

FEBRUARY 18, 2025

Xerox VersaLink C7025 Multifunction printer flaws could allow attackers to capture authentication credentials via pass-back attacks via LDAP and SMB/FTP services. If patching isn’t possible, they should set a strong admin password, avoid using high-privilege Windows accounts for LDAP or SMB, and disable unauthenticated remote access.

Firmware 67

Firmware Authentication Accountability Passwords 67

Security Affairs

FEBRUARY 10, 2025

A recent investigation by researchers from Intezer and Solis Security shed light on the recent operations of the XE Group. Active since at least 2013 , XE Group is a cybercriminal group focused on credit card skimming and password theft via supply chain attacks. ” reads the analysis published by Intezer.

Manufacturing 111

Manufacturing Cybercrime Passwords Authentication 111