If you use LastPass as your password manager, I recommend reading this post in full.If you know anyone who uses LastPass, forward this to them.Even if you do know about the LastPass hack, I still recommend you read this, as there will be information here that you may not know about and risks you have not thought of In case you are not aware LastPass got hacked Back In August 2022 and then AGAIN in November and all customer password vaults have been stolen. This is also not the first time they...
Tech News
Google Business Profile Suspensions Nightmare
If the guidelines are followed correctly, Google Business Profile (GBP) suspensions should not happen right? But if it does happen, getting your profile reinstated certainly shouldn’t take months, either. But, for a few weeks in October, Google has been causing nightmares for tens of thousands of businesses around the world. it seemed that all it took to get suspended was simply looking at your GBP the wrong way, and the current response time for GBP support to reinstate suspended profiles was...
Hackers using “push bombing” to bypass your MFA/2FA
Multifactor authentication (MFA) is the gold standard in offices around the world and 2FA is the standard for end users. We all know the drill: you use your username (often your email address) and, perhaps, as the password, the name of your first dog and your kids DOB. Not very foolproof, and not recommended, but often the end user isn’t too worried. In their mind, they know that if the hacker does figure out their crappy password using various tools or techniques, they still must find their...
New Android malware bypasses multi-factor authentication to steal your passwords
Cybersecurity researchers uncover MaliBot, a powerful new Android malware that steals passwords, bank details and cryptocurrency wallets from users. Besides being able to siphon passwords and cookies of the victim's Google account, the malware is designed to swipe your 2-factor authentication codes from the Google Authenticator app as well as exfiltrate sensitive information such as total balances and seed phrases from Binance and Trust Wallet apps. The malware has been detailed...
GoDaddy Hack Spreads to 6 More Web Hosts
More bad news!!! The hack that exposed the details of 1.2 million GoDaddy customers has spread to six more web hosts. As Search Engine Journal reports, the six additional web hosts are all resellers of GoDaddy's WordPress hosting services and include the following hosts. 123RegDomain FactoryHeart InternetHost EuropeMedia TempletsoHost. Customers of at least two of these web hosting companies have been sent emails very similar to the one GoDaddy sent out...
GoDaddy hacked! Over 1 million websites affected
GoDaddy Managed WordPress hosting customers suffered a massive data breach. Passwords have been reset but the effects of the hack may still be persist. Over one million GoDaddy hosting customers suffered a data breach in September 2021 that went unnoticed for two months. GoDaddy described the security event as a vulnerability. Security researchers indicate that the cause of the vulnerability was due to inadequate security that did not meet industry best practices. The statement by GoDaddy...
Google to start enforcing two-step verification enrollment
Google will soon start pushing more Gmail users and Google Account holders to enable two-step verification — the extra layer of security that can protect people when their credentials have been phished or exposed through a data breach. May 6 is "World Password Day" which is largely about making people less reliant on them for securing online accounts. Google's contribution this year is to nudge more people into enabling two-step verification, otherwise known as two-factor...
Recent Comments