P.F. Chang's Rewards website contained a serious flaw dealing with 2 APIs - a "conductor" API to retrieve Rewards member records and "Soil" API giving access to restaurant location data and mostly public information.
CS Digest Section: Data Security
A team of academics has successfully developed and tested malware that can exfiltrate data from air-gapped computers via power lines. The team - from the Ben-Gurion University of the Negev in Israel- named their data exfiltration technique PowerHammer.
Under Armour Inc said on Thursday that data from some 150 million MyFitnessPal diet and fitness app accounts was compromised in February, in one of the biggest hacks in history, sending shares of the athletic apparel maker down 3 percent in after-hours trade.
Retailer Hudson's Bay Co on Sunday disclosed that it was the victim of a security breach that compromised data on payment cards used at Saks and Lord & Taylor stores in North America.
Cambridge Analytica, a data analysis firm that worked on President Trump's 2016 campaign, and its related company, Strategic Communications Laboratories, pilfered data on 50 million Facebook users and secretly kept it, according to two reports in The New York Times and The Guardian. The apparent misuse of Facebook data-and the social media giant's failure to
The Federal Bureau of Investigation is warning businesses about a spike in phishing campaigns requesting W-2 information from payroll personnel.
On Wednesday, at about 12:15 pm ET, 1.35 terabits per second of traffic hit the developer platform GitHub all at once. It was the most powerful distributed denial of service attack recorded to date—and it used an increasingly popular DDoS method, no botnet required.
Equifax has identified 2.4 million victims of its massive 2017 data breach that were not previously counted in the number of people affected by the hack, the credit bureau announced Thursday.
The personal information of thousands of Marines, sailors and civilians, including bank account numbers, was compromised in a major data spillage emanating from U.S. Marine Corps Forces Reserve.
A Mac malware that can silently, remotely control a vulnerable computer and steal passwords from a user's keychain has gone largely unnoticed by antivirus makers for two years -- even though the code is readily available to download.