Nice try, Microsoft: The new Bing Wallpaper refreshes your desktop daily, but it’s also pulling some shady, malware-like moves. Hidden tricks include auto-installing Bing Visual Search, pushing Edge as your default browser, and decrypting cookies from Chrome and Firefox. Don’t use it.
LastPass hacked again - Is it time to say goodbye?
One of the big names in password managers, LastPass, was breached last August. At the time, the company claimed that no user data was compromised.
An update in December revealed the hackers then launched a phishing campaign against a LastPass employee, obtaining credentials and keys they used to decrypt some basic customer data, but passwords or usernames remained safe.
Are you still reeling from those past attacks? LastPass just shared some more bad news. If you’re a customer, you will want to read this.
Popular password manager hacked again
In a post titled “Incident 2 – Additional details of the attack,” LastPass announced that the second attack was more damaging than initially thought. The following is a timeline of events.
The first attack
In August, LastPass announced that a threat actor gained unauthorized access through a single compromised developer account. The hacker stole encrypted LastPass credentials, source code and proprietary LastPass technical information.
LastPass said customer data was safe, as the decryption keys can only be retrieved from the following:
- Closely guarded on-premises data centers.
- A highly restricted set of shared folders in a LastPass password manager vault used by just four DevOps engineers for administrative duties.
This attack concluded on Aug. 12, 2022.
The second attack
The hackers then launched a phishing campaign against an employee, obtaining credentials and keys, which they used to access and decrypt storage volumes within the cloud-based storage service.
Have an older iPhone or Mac? Don't miss this security warning
Most Apple products are known for having tight security measures in place. It’s part of why people love Apple devices — the system security and safeguarding makes them hard to compromise.
That doesn’t mean Apple products are impenetrable, though. While we hear more about security problems with PCs and Androids, there are issues that pop up with Apple products, too. They don’t occur as often but they still happen. These 11 Apple security updates you should install right now are proof.
Hackers demanding nude photos in latest ransomware scheme
Ransomware isn’t something to be taken lightly. Unless you’re the kind of person who backs everything up several times, a single ransomware attack can leave you with no access to your most important files and documents. In a primarily digital economy, that’s no position anyone wants to be in.