CyberSec Roundup
A synopsis of the Latest Cybersecurity News
Super Weak Passwords
According to data from the popular password breach site haveibeenpwned.com, superhero passwords are among the most common passwords used online. Superman, Batman and Spider-Man are the most popular ones showing up in breached datasets, and their secret identities are also quite popular, with James Howlett, Clark Kent and Bruce Wayne appearing. It is recommended that online accounts be secured with strong passwords and 2 factor authentication enabled.
Neiman Marcus Hacked
The luxury department store chain recently disclosed that a threat actor accessed personal information for 4.6 million of their customers, such as names, contact information, payment card numbers and virtual gift cards. However, 85% of the card information appears to be expired or invalid, and no active Neiman Marcus-branded credit cards were stolen. While the breach was only recently discovered, it appears it occurred in May 2020.
Coinbase Customers Robbed
The Coinbase crypto exchange revealed that a hacker stole cryptocurrency from 6000 of their customers. The hacker used a phishing campaign to fool customers into revealing their email addresses, passwords, and phone numbers, then exploited an MFA bug on Coinbase to gain access to thier accounts. Thankfully, the exchange has committed to reimbursing the affected users.
By: David Pinder
IT & Security Consultant
Certified Ethical Hacker (Master)