Last Thursday, Marriott sent out millions of emails warning of a massive data breach — some 500 million guest reservations had been stolen from its Starwood database. One problem: the email sender’s domain didn’t look like it came from Marriott at all. Marriott sent its notification email from “email-marriott.com,” which is registered to a third […]
View More Marriott’s poor data breach response is putting victims at risk of phishingCategory: Troy Hunt
Mozilla adds website breach notifications to Firefox
Mozilla is adding a new security feature to its Firefox Quantum web browser that will alert users when they visit a website that has recently reported a data breach. When a Firefox user lands on a website with a breach in its recent past they’ll see a pop up notification informing them of the barebones […]
View More Mozilla adds website breach notifications to FirefoxAdGuard resets all user passwords after account hacks
Popular ad-blocker AdGuard has forcibly reset all of its users’ passwords after it detected hackers trying to break into accounts. The company said it “detected continuous attempts to login to AdGuard accounts from suspicious IP addresses which belong to various servers across the globe,” in what appeared to be a credential stuffing attack. That’s when […]
View More AdGuard resets all user passwords after account hacksThree years later, Let’s Encrypt now secures 75% of the web
Bon anniversaire, Let’s Encrypt! The free-to-use nonprofit was founded in 2014 in part by the Electronic Frontier Foundation and is backed by Akamai, Google, Facebook, Mozilla and more. Three years ago Friday, it issued its first certificate. Since then, the numbers have exploded. To date, more than 380 million certificates have been issued on 129 million unique […]
View More Three years later, Let’s Encrypt now secures 75% of the web1Password nets partnership with ‘Have I Been Pwned’
A little over a month since 1Password incorporated a pwned password check feature developed by Have I Been Pwned‘s Troy Hunt, the password manager service has now netted what’s being described as “a partnership” with the popular breach monitoring service. Essentially this boils down to a commercial arrangement between 1Password and the free-to-use breach check service, […]
View More 1Password nets partnership with ‘Have I Been Pwned’1Password bolts on a ‘pwned password’ check
Password management service 1Password has a neat new feature that lets users check whether a password they’re thinking of using has already been breached. At which point it will suggest they pick another. Read More