sorted by: new top controversial old
574

In a significant data breach, hacktivist group NullBulge has infiltrated Disney's internal Slack infrastructure, leaking 1.2TB of sensitive data. This breach, posted on the cybercrime platform Breach Forums on July 12, 2024, exposes many of Disney's internal communications, compromising messages, files, code, and other proprietary information.

266

According to the YouTube channel Gamers Nexus, over 600,000 customer warranty claims for MSI products were publicly accessible via Google search. MSI, a leading computer hardware and peripherals manufacturer, had exposed data that included sensitive information such as names, addresses, phone numbers, and specific order details.

77

British bulk SMS provider IdentifyMobile exposed 200M records because a developer misconfigured an AWS S3 bucket and made it public. A research group from Germany spotted the issue and were able to access more than six terabytes of data. The said data included not only SMS message content but also phone numbers, sender names, and sometimes other account information.

Twilio also recently disclosed a security incident in relation to this news, but their alert email completely downplayed the level of data that was available from this AWS bucket.

632

During installation, the router sent several data packets to an Amazon server in the US. These packets contained the configured SSID name and password in clear text, as well as some identification tokens for this network within a broader database and an access token for a user session that could potentially enable a MITM attack.

Linksys has refused to acknowledge/respond to the issue.

37

OpenAI, which is co-defendant with Microsoft, is seeking an informal discovery conference to compel the Times to produce documents demonstrating the originality and ownership of the copyrighted works in question. According to OpenAI’s court filing, the information is critical to their defense against claims of copyright infringement.

804

Moritz Körner, Member of the European Parliament, disclosed the decision on Twitter. Swedish publisher SVG said, “The question was removed at the last moment from Thursday’s ambassadorial meeting in Brussels”.

705

Patrick Breyer, a staunch defender of digital rights, laments the Pirate Party’s exit from the EU Parliament as a blow to online privacy.

526

A user on the online forum 4chan has leaked a massive 270GB of data purportedly belonging to The New York Times. This leak includes what is claimed to be the source code for the newspaper’s digital operations.

231

The latest proposal mandates user consent for monitoring messages on all communication apps, including those with end-to-end encryption.

194

Access was gained through a third-party cloud database provider, which we know to be Snowflake.

253

The only exception is private messages, and some users have reported difficulty opting out.

196

Would you like a spicy spaghetti dish? Just use some gasoline.

[-] skilledtothegills@lemmy.world 14 points 11 months ago

The breach has now been confirmed by the Discord.io team and the article has been updated to reflect this.

[-] skilledtothegills@lemmy.world 35 points 11 months ago

I'm actually curious where did they got the passwords from? Discord.io looks to be using Discord itself for authenticating users, but I myself have never used the service so I have no idea.

view more: next ›

skilledtothegills

joined 1 year ago