What is OWASP? What is the OWASP Top 10?
The Open Web Application Security Project maintains a regularly updated list of the most pressing security concerns. What is OWASP? The Open Web Application Security Project, or OWASP, is an…
What is token-based authentication?
Token-based authentication is one way to confirm a user’s or device’s identity. It relies on checking whether the entity possesses a previously issued token. What is token-based authentication? Token-based authentication…
Guilty: Sam Bankman-Fried convicted on all counts after monthlong trial
Bankman-Fried, convicted on seven charges, faces a maximum sentence of 110 years. FTX founder Sam Bankman-Fried was convicted of defrauding customers by a federal jury today. He was convicted on…
Okta hit by third-party data breach exposing employee information
Okta is warning nearly 5,000 current and former employees that their personal information was exposed after a third-party vendor was breached. Okta is a San Fransisco-based cloud identity and access…
Memcached DDoS attack
Memcached can speed up websites, but a Memcached server can also be exploited to perform a DDoS attack. What is a memcached DDoS attack? A memcached distributed denial-of-service (DDoS) attack…
1Password discloses security incident linked to Okta breach
1Password, a popular password management platform used by over 100,000 businesses, suffered a security incident after hackers gained access to its Okta ID management tenant. “We detected suspicious activity on…
Okta says its support system was breached using stolen credentials
Okta says attackers accessed files containing cookies and session tokens uploaded by customers to its support management system after breaching it using stolen credentials. “The threat actor was able to…
AT&T Data Breaches: Full Timeline Through 2023
The most recent AT&T data breach occurred in March 2023, when AT&T notified 9 million customers that their data had been exposed following an attack on a third-party vendor. As…
What is click fraud? | How click bots work
Click fraud fakes clicks target pay-per-click ads, boosting webpage search rankings or artificially inflating the popularity of a post. Click bots are often responsible for click fraud. What is click…
What is a warrant canary?
A warrant canary is a public statement describing an action that a service provider has not done; the statement is removed if the service provider gets a legal order to…