Twilio attack shows weaknesses in multifactor authentication systems
Okta admits a small number of SMS-based 2FA codes may have been seen by the attacker, while Twilio acknowledges some Authy MFA accounts were compromised to add smartphones run by th
Twilio Attack Shows Weaknesses In Multifactor Authentication Systems
Okta admits a small number of SMS-based 2FA codes may have been seen by the attacker, while Twilio acknowledges some Authy MFA accounts were compromised to add smartphones run by th
LockBit Tighten Defenses Against DDoS Attacks with Triple Extortion
In order to improve the defenses against distributed denial-of-service (DDoS) attacks, LockBit is taking its operation to triple extortion level. According to LockBitSupp, the public-facing figure of the LockBit ransomware operation, LockBit will add DDoS as an extortion tactic in addition to the encryption of data and leaking it. “I am looking for dudosers [DDoSers] […]
Hackers Gain Access To Authy 2FA Accounts In Twilio Breach
Authy, a two-factor authentication (2FA) service used by Twilio, was accessed by attackers after compromising the provider of programmable communication tools Twilio. Researchers say the Twilio data breach is part of a larger campaign of cyberattacks targeting more than 300 organizations. According to Twilio, the attackers who gained access to its infrastructure on August 4 […]
Nelnet Servicing Breach Exposes Data Of Over 2.5 million Students With Loan Accounts
Data on more than 2,501,324 people with student loan accounts were leaked after attackers broke into the systems of technology service provider Nelnet Servicing. Individuals with student loans from the Oklahoma Student Loan Authority (OSLA) and EdFinancial were affected because Nelnet Servicing provided them with the web portal that gives students who take out a […]
Data Broker Sued Over Sale Of Location Data
The Federal Trade Commission has sued data broker Kochava for violating users’ privacy by selling the exact location of millions of mobile devices. Kochava, it is alleged, gathers a wealth of consumer information by acquiring data from other data brokers to sell to its own customers, and helps advertise and analyze visitor numbers in stores […]
Justice Department Drafts Antitrust Lawsuit Against Apple
Apple could face a major antitrust lawsuit in the United States soon. The Department of Justice’s antitrust division is preparing an antitrust lawsuit against Apple, which it intends to file by the end of the year. However, a final decision on whether to sue Apple has not yet been made. Justice Department investigators are now […]
Musk Asks Twitter Whistleblower For Spam And Security Details
Elon Musk has subpoenaed Twitter whistleblower Peiter Zatko to get paperwork about the company’s spam and alleged security flaws, in addition to how it quantifies spam accounts, as the billionaire fights to stop the deal to buy Twitter for US$44 billion. Twitter’s former chief security officer, Peiter Zatko, had previously filed a whistleblower complaint alleging […]
Microsoft Amends Cloud Distribution Deal
Following complaints from EU antitrust authorities, Microsoft has announced new, revised distribution agreements and service changes that will go into effect on 1 October. The revised deal enables customers to use their licenses with any European cloud provider that provides services for their own data centers. “On October 1, 2022, Microsoft will implement significant upgrades […]
Nokia And Ericsson Join Dell In Pulling Out Of Russia
Nokia, Logitech International and Ericsson have joined Dell and other technology companies in exiting the Russian market due to the ongoing Russian-Ukraine conflict. According to a Nokia spokesperson, the vast majority of its 2,000 employees will have left Russia by the end of the year, but they will maintain a formal appearance until the conclusion […]
