InfoSec News Nuggets 01/06/2023

Slack's private GitHub code repositories stolen over holidays Slack suffered a security incident over the holidays affecting some of its private GitHub code repositories. The immensely popular Salesforce-owned IM app is used by an estimated 18 million users at workplaces and digital communities around the world. BleepingComputer has come across a security incident notice issued by Slack on December 31st, 2022. The incident involves threat actors gaining access to Slack's externally hosted GitHub repositories via a "limited" number of Slack employee tokens that…
Read More

InfoSec News Nuggets 10/09/2020

Facebook rebuts ‘The Social Dilemma,’ a popular Netflix documentary The movie revealed, perhaps for the first time to some viewers, how social networks use algorithms to keep people coming back. It also addressed how tech companies have influenced elections, ethnic violence and rates of depression and suicide. Some viewers said they were deleting Facebook and Instagram after watching it. The rebuttal suggests that Facebook may be worried about the documentary’s effects on usage. “The Social Dilemma” appeared…
Read More

InfoSec News Nuggets 7/9/2020

Cops Seize Server that Hosted BlueLeaks, DDoSecrets Says Authorities in Germany have seized a server used by the organization that published a trove of US police internal documents commonly known as BlueLeaks, according to the organization’s founder. On Tuesday, Emma Best, the founder of Distributed Denial of Secrets or DDoSecrets, a WikiLeaks-like website that has published the police data, said that prosecutors in the German town of Zwickau seized the organization’s “primary public download server.” “We are working…
Read More

InfoSec News Nuggets 6/25/2020

Warning: ‘Invisible God’ Hacker Sold Access To More Than 135 Companies In Just Three Years Major antivirus companies, banks, insurance providers, government agencies, large hotels, wineries, restaurants, airlines. Think of almost any kind of company and there’s a good chance a prolific, financially-motivated hacker known as Fxmsp has broken into it, or attempted to, according to a report released Tuesday. Dubbed the “invisible god of networks,” he’s a suspected male from Kazakhstan who claimed to have broken…
Read More