HackDig : Dig high-quality web security articles for hacker

Danish-speaking users hit by malware spread via Dropbox links

Danish-speaking users were infected by malware spread through Dropbox, but the company quickly adopted the countermeasures to stop the attack. According to the experts from security firm AppRiver, Danish-speaking users were hit by an unusual malware-based attack. The attack hit Denmark, Germany, and several surrounding Scandinavian countries on Wednesday mor
Publish At:2017-03-12 05:15 | Read:2733 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Malware DropBox malware Pi

Scam Says LinkedIn Team Needs Your Photo ID for Account Verification

Against many experts’ advice, we as users tend to overshare information about ourselves on social media. Doing so makes the job of a bad actor so much easier. Depending on the content of the shared details, an actor can leverage the information to commit identity theft. Alternatively, they can abuse it to conduct targeted phishing campaigns known as sp
Publish At:2016-11-10 04:46 | Read:5891 | Comments:0 | Tags:Cyber Security Featured Articles Dropbox Heimdal Security ID

Dropbox Leverages Defense in Depth to Store Its Users’ Passwords

Dropbox relies on a defense in depth strategy consisting of multiple layers of hashing and encryption to protect its users’ passwords.Devdatta Akhawe, a security engineer at the file storage service, says Dropbox went to all this trouble to prevent attackers not only from directly compromising members’ plaintext passwords but also from accessing
Publish At:2016-09-22 19:30 | Read:4078 | Comments:0 | Tags:Latest Security News AES 256 bcrypt Dropbox encryption hash

Companies that are making the same mistake as Dropbox

Though it may seem trivial, it is not: the security of your company and of your customers depends largely on the passwords that your employees use. In fact, should any of them make such a serious error as, for example, reusing their login credentials across different services, the consequences could be catastrophic, as Dropbox has recently learned. The case
Publish At:2016-09-12 15:05 | Read:3910 | Comments:0 | Tags:News cybersecurity dropbox password

Rambler.ru data breach, 98.1 million CLEARTEXT passwords leaked online

The data breach notification service announced the Rambler.ru data breach, more than 98 million CLEARTEXT passwords were leaked online. While I was writing about the BuzzersForum data breach, the news of another clamorous incident is circulating online, this time, the victim is of the  Russian biggest web portals, Rambler.ru. Rambler.ru is one of the largest
Publish At:2016-09-06 03:30 | Read:3183 | Comments:0 | Tags:Breaking News Cyber Crime Data Breach Hacking data breach Dr

Spotify resets users’ passwords due to data breaches suffered by other firms

In response to the numerous data breaches suffered by other services, the music streaming service Spotify forced a password reset for a number of users. In the last months, numerous IT companies suffered a major data breach, including Dropbox, LinkedIn, MySpace, VK.com, and Tumblr. The criminal underground is flooded by login credentials from the above servi
Publish At:2016-09-01 13:55 | Read:3981 | Comments:0 | Tags:Breaking News Data Breach Hacking Security data breach DropB

Dropbox Data Breach, more than 68 Million account details leaked online

A DropBox data breach occurred in 2012 is forcing the company to reset login passwords for users included in a data dump leaked online. Another clamorous data breach is in the headlines, a data dump containing more than 68 Million account credentials for online cloud storage platform Dropbox was leaked online. Earlier this week, Dropbox announced it was forc
Publish At:2016-08-31 19:35 | Read:2683 | Comments:0 | Tags:Breaking News Cyber Crime Data Breach Hacking data breach Dr

Dropbox Says Data Dump of 60M User IDs the Real Deal

American file hosting service Dropbox said a data dump of approximately 60 million users’ records is real.A spokesperson for the company said the records, which include email addresses as well as hashed and salted passwords, are the same as those affected by a security incident that occurred several years ago.In July 2012, the company discovered someon
Publish At:2016-08-31 17:45 | Read:8391 | Comments:0 | Tags:Latest Security News data dump Dropbox password security Tro

Dropbox Smeared in Week of Megabreaches

Last week, LifeLock and several other identity theft protection firms erroneously alerted their customers to a breach at cloud storage giant Dropbox.com — an incident that reportedly exposed some 73 million usernames and passwords. The only problem with that notification was that Dropbox didn’t have a breach; the data appears instead to have come
Publish At:2016-06-16 05:15 | Read:3734 | Comments:0 | Tags:A Little Sunshine Data Breaches Allison Nixon Bryan Hjelm Dr

Phishing campaign leveraging on Dropbox targets Hong Kong media

Security experts at FireEye have uncovered an ongoing phishing campaign leveraging Dropbox account linked to “admin@338” as Command and Control platform. Experts at FireEye have discovered an ongoing phishing campaign using a Dropbox account linked to “admin@338” as the delivery platform. The account &#
Publish At:2015-12-01 18:05 | Read:3155 | Comments:0 | Tags:Breaking News Cyber Crime Hacking admin@338 DropBox Hong Kon

China APT Gang Targets Hong Kong Media via Dropbox

An APT gang linked to China and alleged to be responsible for targeted attacks against foreign governments and ministries, has now pointed its focus inward at China’s autonomous territory Hong Kong.An August attack against several media companies in Hong Kong was carried out shortly after a high-profile controversy over an appointment at the prestigiou
Publish At:2015-12-01 17:25 | Read:3040 | Comments:0 | Tags:Government Malware Web Security admin@338 advanced persisten

This Week in Security: Oracle’s Blog Blunder, Facebook’s Privacy Flaw and Lenovo Strikes Again

Our security roundup series covers the week’s trending topics in the world of information security. In this compilation, we’ll let you know of the latest announcements, reports and controversies that the industry has been talking about recently.Here’s what you don’t want to miss from the week of August 9th, 2015:The biggest controversy of the week goes to Or
Publish At:2015-08-14 20:10 | Read:3384 | Comments:0 | Tags:This Week in Security Dropbox Facebook Lenovo Mary Ann David

Dropbox Launches Bounty Program on HackerOne

Dropbox has become the latest high-profile Internet firm to start a bug bounty program, hooking up with HackerOne to provide rewards to security researchers who report vulnerabilities through the program.The new reward system from Dropbox covers a variety of the company’s offerings, including the Dropbox and Carousel iOS and Android applications; the D
Publish At:2015-04-15 17:55 | Read:3358 | Comments:0 | Tags:Vulnerabilities bug bounty dropbox HackerOne vulnerabilities

Dropbox Patches Remotely Exploitable Vulnerability in SDK

Developers at Dropbox recently fixed a remotely exploitable vulnerability in the Android SDK version of the storage app that enabled attackers to connect applications to a Dropbox account without the user’s consent. This could have opened users up to the theft of information from any app that used a faulty version of Dropbox, either via malware or driv
Publish At:2015-03-12 00:55 | Read:3651 | Comments:0 | Tags:Vulnerabilities Web Security dropbox Dropbox SDK IBM vulnera

DroppedIn: Remotely Exploitable Vulnerability in the Dropbox SDK for Android

The IBM X-Force Application Security Research Team has discovered a vulnerability in the Dropbox SDK for Android (CVE-2014-8889) which allows attackers to connect applications on mobile devices to a Dropbox account controlled by the attacker without the victim’s knowledge or authorization. This is a serious flaw in the authentication mechanism within a
Publish At:2015-03-11 08:30 | Read:3877 | Comments:0 | Tags:Application Security IBM X-Force Mobile Security Software &

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud