300,000 Spotify accounts hacked

300,000 Spotify accounts hacked

Spotify officials suggested that after the hack, users change their passwords and not use the same passwords on other platforms.“Working with Spotify, we confirmed that the database belonged to a group or individual using it to defraud Spotify and its users.

Scammers Expose Facebook Data Haul of 13 Million Records

Scammers Expose Facebook Data Haul of 13 Million Records

Among the 5.5GB haul discovered by vpnMentor on September 21, was 150,000-200,000 Facebook usernames and passwords, and personal info including emails, names and phone numbers for hundreds of thousands who had fallen victim to a Bitcoin scam.

Server Leak exposes users of dating site network

Server Leak exposes users of dating site network

vpnMentor researchers said the database stored copies of push notifications that various online sites were sending to their users via Mailfire's push notification service.

Free VPNs based in Hong Kong caught logging

Free VPNs based in Hong Kong caught logging

This batch of fake no log VPNs was discovered by the research team at VPNMentor, who published the results on their blog on July 15th, 2020 after notifying both the offending VPNs and relevant authorities and confirming that the exposed server was finally being protected.

845GB of racy dating app records exposed to entire internet via leaky AWS buckets

845GB of racy dating app records exposed to entire internet via leaky AWS buckets

Word of the uncontrolled emission burst forth from vpnMentor this week, which claims it found a misconfigured AWS S3 buckets containing 845GB of private dating app records.

Massive data leak exposes medical records, mugshots and IDs of more than 36,000 US inmates

Massive data leak exposes medical records, mugshots and IDs of more than 36,000 US inmates

JailCore was left unsecure and unencrypted on an Amazon server, impacting locations in Florida, Kentucky, Missouri, Tennessee and West Virginia The bucket was discovered by vpmMentor on January 3rd, but was not closed until nearly two weeks later.

Nearly everyone in Ecuador is the victim of a data breach

Nearly everyone in Ecuador is the victim of a data breach

According to vpnMentor, the data appears to have come from multiple sources including Ecuadorian government registries, an Ecuadorian national bank and an automotive association.It even includes detailed information about individuals' family members.vpnMentor notified Ecuador's Computer Emergency Response Team, and the breach was closed on September 11th.

Data on almost every Ecuadorean citizen leaked

Data on almost every Ecuadorean citizen leaked

The pair said they had found the 18GB of data spread across a variety of files saved on an unsecured server set up and run by Novaestrat - an Ecuadorean marketing and analytics company.

Popular Porn Site Breach Exposed 1.2 Million 'Anonymous' User Profiles

Popular Porn Site Breach Exposed 1.2 Million 'Anonymous' User Profiles

Researchers from vpnMentor have discovered a data breach at the popular Luscious porn site that exposed the personal profiles of 1.2 million supposedly anonymous users.

Major breach found in biometrics system used by banks, UK police and defence firms

Major breach found in biometrics system used by banks, UK police and defence firms

The fingerprints of over 1 million people, as well as facial recognition information, unencrypted usernames and passwords, and personal information of employees, was discovered on a publicly accessible database for a company used by the likes of the UK Metropolitan police, defence contractors and banks.

Confirmed: 2 Billion Records Exposed In Massive Smart Home Device Breach

Confirmed: 2 Billion Records Exposed In Massive Smart Home Device Breach

The researchers in question, Noam Rotem and Ran Locar from vpnMentor, found that a user database belonging to a Chinese company called Orvibo, which runs an Internet of Things (IoT) management platform, had been left exposed to the Internet without any password to protect it.

Big tech has spent $582M lobbying Congress. Here’s where that money went

Big tech has spent $582M lobbying Congress. Here’s where that money went

Facebook and Google, for instance, frequently talked about privacy, while Apple was the only of the five to lobby to preserve “technical barriers to trade,” mentioning it in 21 percent of their reports.

Branch.io Flaws may have affected as many as 685 million individuals

Branch.io Flaws may have affected as many as 685 million individuals

More than 685 million users may have been exposed to XSS attacks due to a flaw in Branch.io service used by Tinder, Shopify, and many others. “Digging deeper, we found out many big websites were sharing the vulnerable endpoint in their code and domains, including Shopify, Yelp, Western Union, and Imgur.