January 3, 2024 at 12:22PM LastPass now requires all users to create a 12-character master password for increased security. They will also check passwords against breached credentials and enforce multi-factor authentication. These changes were prompted by security breaches in 2022 that led to stolen customer data. LastPass is emailing customers about these updates, impacting millions … Read more
December 20, 2023 at 02:35PM A new phishing campaign targeting Instagram users involves fake ‘copyright infringement’ emails enticing recipients to input account details and backup codes on phishing pages. The elaborate scheme masquerades as Meta’s portal and requests sensitive information. Despite signs of fraud, the convincing approach poses a serious threat to unsuspecting victims. Users … Read more
October 25, 2023 at 09:45AM Critical security flaws in the OAuth implementation of popular online services such as Grammarly, Vidio, and Bukalapak have been disclosed. These weaknesses could have allowed malicious actors to hijack user accounts by obtaining access tokens. The vulnerabilities have been addressed by the respective companies. OAuth, commonly used for cross-application access, … Read more