Topic: password reset
-
Instagram Resolves Password Reset Email Glitch
Instagram resolved a widespread glitch that erroneously sent password reset emails to users, confirming an external party triggered the automated messages. The platform assured users their accounts remained secure with no unauthorized access, advising recipients to simply ignore the unsolicited e...
Read More » -
Urgent: Change Your Plex Password Now
Plex has experienced a security breach where an unauthorized party accessed customer data, including email addresses, usernames, and securely hashed passwords. The company has addressed the vulnerability and recommends users immediately reset their passwords and enable two-factor authentication f...
Read More » -
The $400M Password Problem: Can You Get a New One?
A social engineering attack on Clorox, executed by impersonating employees and manipulating an outsourced service desk, led to an estimated $380 million in damages by exploiting weak password and MFA reset procedures. The breach caused severe operational disruptions, including halted production a...
Read More » -
Student Data Stolen in Victorian Education Dept Hack
An unauthorized party breached a Victorian Department of Education database, accessing student names, school details, and email addresses, but not more sensitive data like birth dates or home addresses. As a precaution, all student account passwords have been reset, with priority given to VCE stu...
Read More » -
Plex Urges Password Reset Following New Data Breach
Plex is advising all users to reset their passwords immediately after an unauthorized party accessed a restricted database, compromising email addresses, usernames, and securely hashed passwords. The company recommends users change their passwords via a provided link and sign out of all connected...
Read More » -
Instagram Denies Data Breach After 17M Account Leak Claims
Instagram resolved a software bug that allowed unauthorized password reset requests, but denies any internal data breach occurred. A dataset containing personal information like emails and phone numbers from over 17 million accounts has been leaked online, likely from older data scraping. The lea...
Read More » -
Google's 2.5 Billion Gmail Users: No Password Reset Required
Google has denied false reports of a major Gmail data breach and clarified that no password reset warning was issued to users. The company emphasized that Gmail's security is robust, blocking over 99.9% of phishing and malware attempts, and recommended using passkeys for added protection. This in...
Read More » -
Google Denies Gmail Scam Risk – But You Still Need to Do This
Google denies recent claims of increased scam risks for Gmail users on desktops and laptops, asserting that its security systems are strong and block over 99.9% of threats. Users are advised to enhance account security by regularly updating passwords and enabling two-factor authentication, while ...
Read More » -
Akira Ransomware Actively Exploits Critical SonicWall VPN Flaw
The Akira ransomware group is exploiting CVE-2024-40766, a known vulnerability in SonicWall VPN appliances, to breach unpatched corporate networks. Despite a patch being available since August 2024, incomplete updates and unchanged default credentials allow attackers to bypass security measures l...
Read More » -
Plex Data Breach: Change Your Password Now
Plex is urging users to update their passwords after a security breach exposed encrypted passwords, email addresses, and other authentication data. Although passwords were encrypted, the company warns they could potentially be deciphered and used to access accounts, recommending a password reset ...
Read More » -
SonicWall Cloud Backup Users Hit by Major Data Breach
A data breach at SonicWall exposed all customers' firewall configuration files stored on the MySonicWall cloud service, initially thought to affect fewer users but later confirmed as widespread. The stolen files contain encrypted credentials and configuration data, increasing the risk of targeted...
Read More » -
French Football Federation Hit by Cyberattack, Data Breached
The French Football Federation experienced a cybersecurity breach where attackers accessed its administrative software by compromising a user account, leading to a system-wide password reset. Personal data including names, addresses, and contact details of club members was stolen, but no financia...
Read More » -
SonicWall VPN Breach: Hackers Exploit Stolen Credentials
Attackers breached over 100 SonicWall SSLVPN accounts using stolen credentials, with malicious activity detected from October 4th to at least October 10th by Huntress. The intrusions utilized previously compromised valid credentials, not brute-force methods, and involved network reconnaissance an...
Read More » -
Google Gemini Launches in US Chrome with Agentic Browsing
Google has launched its Gemini AI assistant for all U.S. desktop users, expanding access beyond paid subscribers and introducing new browser-based capabilities. The assistant can now operate across multiple tabs, compare information, and will soon retrieve past web pages, while also integrating w...
Read More » -
OnSolve CodeRED System Hit by Cyber-Attack, Disrupting Emergency Alerts
A cybersecurity breach compromised the OnSolve CodeRED platform, disrupting emergency alerts and leading to the theft of user data, including names, addresses, and passwords. The INC Ransom group claimed responsibility for the attack, which targeted the legacy system and resulted in encrypted fil...
Read More » -
TikTok Videos Fueling New ClickFix Infostealer Attacks
A new wave of TikTok cyberattacks uses deceptive videos promising free premium software to trick users into executing malicious PowerShell commands, part of the ClickFix social engineering campaign. Executing the commands downloads Aura Stealer malware, which harvests sensitive data like password...
Read More » -
PayPal Data Breach Exposed User Info for 6 Months
A software flaw in PayPal's Working Capital loan platform exposed customer data, including Social Security numbers and addresses, for nearly six months due to a code change made in July 2025. PayPal fixed the flaw by December 13, 2025, is offering affected users two years of credit monitoring, an...
Read More » -
ownCloud Urges MFA Activation Following Credential Theft
ownCloud is urging all users to immediately enable multi-factor authentication (MFA) to block unauthorized access, even if login credentials are stolen. The company clarified its platform was not hacked; attackers instead used credentials stolen by malware from employee devices to access accounts...
Read More »