Latest Hacking News

US Senate report reveals new details on 2017 Equifax breach and Samsung Galaxy S10's face recognition seems to be a step backwards in security on episode 237 of our daily cybersecurity podcast.

Marketing email database exposes 2 billion records, Facebook sues two Ukranians for stealing user data with malicious quiz apps and browser extensions, and hacker stole 6 to 10TB in Citrix breach on episode 236 of our daily cybersecurity podcast.

A Windows 7 zero-day, easily hackable ultrasound machines, Notepad++ losing code signing, and man guilty of hacking over cop acquittal on episode 235 of our daily cybersecurity podcast.

Google reveals patched Chrome flaw was exploited in the wild, StealthWorker malware using botnet to brute-force websites, and UniKey patches BleedingBit flaws on episode 234 of our daily cybersecurity podcast.

Microsoft Word bug allows attackers to bypass security defenses, Zerodium offering large payouts for cloud zero-days, and reportedly Chinese hackers targeted 27 universities for military secrets on episode 233 of our daily cybersecurity podcast.

Chinese surveillance data left exposed, Project Zero discloses unpatched macOS flaw, and researcher decides to share Keychain flaw with Apple on episode 232 of our daily cybersecurity podcast.

A look at RSA Conference 2019's themes and keynote speeches and a report on Lazarus Group connections to the Sharpshooter campaign on episode 231 of our daily cybersecurity podcast.

A data leak exposes Dow Jones Watchlist and an alleged UN aviation agency cyberattack cover-up on episode 230 of our daily cybersecurity podcast.

Coinhive to shut down on March 8th, a new free hacking toolkit, and Thunderclap Thunderbolt vulnerabilities on episode 229 of our daily cybersecurity podcast.

On episode 228 of our daily cybersecurity podcast we look at new research out of NDSS Symposium 2019 including a browser-based botnet attack and ExSpectre, which hides malware using speculative execution.

Apex Legends players targeted by malware and scam campaigns, WinRAR ACE vulnerability exploited, and Adobe patches critical Reader flaw twice on episode 227 of our daily cybersecurity podcast.

TurboTax credential stuffing attacks, malware spread via LinkedIn messaging system, and a new tool to analyze Chrome extensions on episode 226 of our daily cybersecurity podcast.

Microsoft Edge whitelists flash autorun on Facebook, WinRAR vulnerability existed for up to 19 years, and researcher Ken Munro says hackers could easy sink ships at seas on episode 225 of our daily cybersecurity podcast.

Lazarus Group targets Russian companies for the first time, Russian nation-state hackers have quickest breakout time, and a remote code execution flaw existed in WordPress of 6 years on episode 223 of our daily cybersecurity podcast.

VK worm revenge prank, Wendy's $50 million data breach settlement, and Google Earth reveals Taiwanese military sites on episode 223 of our daily cybersecurity podcast. Today's Agenda is as follows: White Hat Hackers Spread VK Worm as Revenge Prank Wendy’s Reaches $50 Million Settlement Over Data Breach Google Earth Accidentally Reveals Taiwan Military Sites If you would like to add the podcast to your Alexa flash briefings you can do so here.

Australia says 'state actor' responsible for Parliament hacks and discloses party hacks, third collection of hacked databases hits the Dark Web, and Google backs off ad-blocker breaking Chrome changes on episode 222 of our daily cybersecurity podcast.

On episode 221 of our daily cybersecurity podcast we look at two batches of stolen account information collections put up for sale on the dark web and the numerous disclosures announced this week.

500px announces breach impacting all 14.8 million of it's users, MacOS malware disguised as Windows .exe, and numerous Lenovo Watch X security vulnerabilities detailed on episode 220 of our daily cybersecurity podcast.

Data of up to 100,000 Australians exposed, cyberattack on VFEmail destroys 18 years worth of data, and electric scooter hacked and controlled remotely on episode 219 of our daily cybersecurity podcast.

Adobe Reader DC zero-day flaw gets a temporary patch, critical flaw found in Wordpress plugin, and first clipper malware found in Google Play store on episode 218 of our daily cybersecurity podcast.