Security News > 2019 > September

A lack of encryption and easily enumerated IDs open users to a host of creepy attacks.

Server lacked password protection and included multiple databases with records from the U.S., U.K. and Vietnam.

WordPress developers on Thursday announced the availability of version 5.2.3, a maintenance and security release that includes 29 fixes and enhancements, along with several security patches. read more

Episode 7 of the Naked Security podcast is available now!

Phone numbers linked to more than 400 million Facebook accounts were listed online in the latest privacy lapse for the social media giant, US media reported Wednesday. read more

SF-based continuous delivery outfit says soz Software testing and delivery company CircleCI has apologised for exposing user data to the world and its dog.…

Social Network Says Problem Fixed, But Techcrunch Reports Many Still AccurateFacebook has confirmed that unprotected databases containing more than 419 million users' phone numbers contained data...

A decade ago, the Doghouse was a regular feature in both my email newsletter Crypto-Gram and my blog. In it, I would call out particularly egregious -- and amusing -- examples of cryptographic...

Every day we seem to hear of new and interesting linkages discovered by the medical and scientific communities. Just yesterday there was a report that young people who vape are 3.5 times more...

Google and its subsidiary YouTube will pay a record $170 million to settle allegations by the Federal Trade Commission (FTC) and the New York Attorney General that the YouTube video sharing...