A security researcher has uncovered vulnerabilities in the New York Times-owned online game Wordle that not only reveal the solution to the daily word puzzle but also expose its application programming interface to potential hacking. Detailed today by David Thompson, a security researcher at Noname Security under the title of “Tomorrow’s Wordle is ‘PWNED!’,” the ...

Updated: Twitter appears to have backtracked on its ban. It deleted tweets announcing the new policy that banned users from posting links and handles to other social networks and also removed the page detailing the rules. Twitter Inc. has banned promotional links to rival social networks as Chief Executive Officer Elon Musk has decided to run a ...

Viewers watching the World Cup game between France and Morocco on the streaming video service FuboTV had their viewing interrupted following what the company described as a “criminal cyber attack.” The exact form of attack was not disclosed. FuboTV said the incident was not related to any bandwidth constraints on its part. Ticking the standard ...

The second meeting of the U.S. Joint Ransomware Task Force held on Wednesday assessed measures and efforts to address the impact and prevalence of ransomware attacks. Jointly chaired by the Cybersecurity and Infrastructure Agency and Federal Bureau of Investigation, the JRTF was founded by Congress as an interagency body to strengthen efforts against the ongoing ...

A database belonging to InfraGard, a partnership between the U.S. Federal Bureau of Investigation and the private sector to promote the protection of critical infrastructure, has been stolen and was offered for sale on a cybercrime forum. First reported Dec. 13 by Brian Krebs, the database contains information on InfraGard’s over 80,0000 members. The stolen data ...

Microsoft Corp. has banned customers from using Azure services for cryptocurrency mining unless pre-approval is granted. The change in the Universal License Terms for Online policy came into effect on Dec. 1 but was unnoticed at the time until it was highlighted in an Azure Solution Area post. The post , widely reported today, states ...

Artificial intelligence and machine learning systems cybersecurity startup Protect AI has today emerged from stealth mode with $13.5 million in new funding and its first product, NB Defense. NB Defense is a free product that’s claimed to be the industry’s first security solution to address vulnerabilities in a core component used at the beginning of ...

Researchers at Trustwave Holdings Inc.’s SpiderLabs today detailed a new campaign that leverages Facebook infrastructure for phishing attacks and the theft of personally identifiable information. Dubbed “Meta-Phish,” the campaign starts with phishing emails that point to actual Facebook posts instead of the typical malicious phishing link. The content on Facebook is crafted to appear legitimate, ...

Cybersecurity company CrowdStrike Holdings Inc. today announced it has expanded its Falcon platform to deliver enhanced adversary-driven External Attack Surface Management technology. The expansion includes the introduction of Falcon Surface, a new standalone module that features capabilities from CrowdStrike’s recent acquisition of Reposify Ltd. The module delivers advanced EASM with enhanced adversary intelligence and real-time discovery ...

When most people think of the Danish company Lego A/S, it would be of toy bricks and childhood imagination. But Lego has moved into the digital age, offering a service called BrickLink, and unfortunately it has been found to be not very secure. A new report from application programming interface security startup Salt Security Inc. today ...