Security News

Researchers have discovered another big database containing millions of European customer records left unsecured on Amazon Web Services for anyone to find using a search engine. Data in the records included names, shipping addresses, email addresses, phone numbers, items purchased, payments, order IDs, links to Stripe and Shopify invoices, and partially redacted credit cards.

If the email is true, you can simply go to the Amazon site yourself, or use the Amazon app - the online location of Amazon isn't a secret. We don't know whether the crook who sent us the phishing email made a mistake, and used the wrong URL, or whether a second crook had arrived in the interim and then taken over the hacked server from the original hackers.

Amazon's Ring is mandating the use of two-factor authentication for all users, a move designed to help stop creepy takeovers of the web-connected home security cameras. Ring users have had the option to use two-factor authentication, but now it will be mandatory, writes Ring President Leila Rouhi in a blog post.

The X-Force Threat Intelligence Index 2020 found that hackers are targeting manufacturing plants, making banking trojans more sophisticated, and spoofing tech brands to make phishing schemes successful. IBM Security releases the IBM X-Force Threat Intelligence Index annually, summarizing the most prominent threats identified by research teams.

SIOS Technology, an industry pioneer in providing IT resilience through intelligent application availability, announced the availability of SIOS AppKeeper, the industry's first out-of-the-box solution to automatically respond to service outages on Amazon EC2 instances, protecting applications from service interruptions and downtime while eliminating the need for costly and time-consuming manual intervention. SIOS AppKeeper not only identifies and sends notifications for failures from an intuitive dashboard, it will also automatically attempt to restart failed services or reboot the instance - addressing 85% of application service failures.

The mobile phone of Amazon CEO Jeff Bezos was hacked using a malicious file sent directly from the official WhatsApp account of Saudi Arabia's Crown Prince Mohammed Bin Salman, investigators have reportedly found. Hackers stole sensitive information from Bezos' phone "Within hours" of the hack, according to a digital forensic analysis of Bezos' phone conducted by FTI Consulting, a Washington-based business advisory group.

The mobile phone of Amazon CEO Jeff Bezos was hacked using a malicious file sent directly from the official WhatsApp account of Saudi Arabia's Crown Prince Mohammed Bin Salman, investigators have reportedly found. Hackers stole sensitive information from Bezos' phone "Within hours" of the hack, according to a digital forensic analysis of Bezos' phone conducted by FTI Consulting, a Washington-based business advisory group.

The Saudi embassy in Washington on Tuesday dismissed suggestions the kingdom hacked the phone of Washington Post owner Jeff Bezos, as media reports linked the security breach to a WhatsApp message from an account of Crown Prince Mohammed bin Salman. The 2018 intrusion into the device led to the release of intimate images of Amazon founder Bezos, whose Post newspaper employed as a contributing columnist Jamal Khashoggi, a Saudi journalist murdered later that same year at Riyadh's consulate in Istanbul.

Amazon, Apple, Google, and the Zigbee Alliance, announced a new working group that plans to develop and promote the adoption of a new, royalty-free connectivity standard to increase compatibility...

A publicly accessible Amazon S3 storage bucket originating from iPR Software was found exposing information on thousands of users, UpGuard’s security researchers reveal.  read more