Media Archive

11th October 2018
The Register - Mozilla grants distrusted Symantec certs a stay of execution, claims many sites yet to make switch

10th October 2018
TechCrunch - With Chrome 70, hundreds of popular websites are about to break

9th October 2018
The Register - It's a cert: Hundreds of big sites still unprepared for starring role in that Chrome 70's show
TechRadar - Chrome browser security tweak could badly impact loads of popular websites

28th September 2018
BBC Travel Show - Taming India's native horses (segment on WiFi and VPNs overseas)

26th September 2018
The Daily Swig - Google defends auto-login revamp amidst privacy storm

20th September 2018
The Register - Sealed with an XSS: IT pros urge Lloyds Group to avoid web cross talk

14th September 2018
Tech Crunch - Three years later, Let’s Encrypt has issued over 380 million HTTPS certificates

7th September 2018
ZD Net - Chrome 69 kills off www in URLs: Here's why Google's move has made people angry

29th August 2018
InfoSecurity Magazine - Over 50% of Top Global Sites Now on HTTPS

28th August 2018
The Register - Give yourselves a pat on the back, top million websites, half of you now use HTTPS
CNet - Fortnite's battle royale with Android security problems is just getting started
ThreatPost - Fortnite Android App Falls Victim to Man-in-the-Disk Flaw
InfoSecurity Magazine - Over 50% of Top Global Sites Now on HTTPS

21st August 2018
The Register - Connected car data handover headache: There's no quick fix... and it's NOT just Land Rovers

3rd August 2018
The Register - Web doc iCliniq plugs leaky S3 bucket stuffed full of medical records

27th July 2018
InfoSecurity Magazine - Smart Home Security Camera Bug Exposed
Naked Security - “Simple trick” floors home security camera, gives anyone access
Threat Post - Security Glitch in IoT Camera Enabled Remote Monitoring

26th July 2018
BBC News - Swann's home security camera recordings could be hijacked
ZD Net - Flaw let researchers snoop on Swann smart security cameras
Smashing Security - Smashing Security #088: PayPal’s Venmo app even makes your drug purchases public
The Inquirer - Swann cameras 'fixed' after researchers uncover spying flaw, again

25th July 2018
The Register - Criminal mastermind injects malicious script into Ethereum tracker. Their message? '1337'
IT News - Aussie corporate and government websites with poor HTTPS redirects outed
Bitcoinist - ETHERSCAN BLOCK-EXPLORER HIT BY ‘HARMLESS’ HACK

24th July 2018
Threat Post - Google Starts Labeling All HTTP Sites as ‘Not Secure’
InfoSecurity Mag - HTTPS Awareness Raised in New Initiative
BBC News - Chrome browser flags Daily Mail and other sites as 'not secure'
The Register - Insecure web still too prevalent: Boffins unveil HSTS wall of shame
HelpNet Security - Chrome starts marking all HTTP sites as “Not secure”
Motherboard - An Incredibly Simple Hack Had the Potential to Manipulate Cryptocurrency Markets

23rd July 2018
CNet - Chrome's HTTP warning seeks to cut web surveillance, tampering

11th July 2018
Threat Post - Newsmaker Interview: Scott Helme on Securing the Web

9th July 2018
Smashing Magazine - Person Of The Week

27th June 2018
Motherboard - Online Betting Site Left Employees' Logins and Passwords Open to Hackers
ZDNet - Betting giant BetVictor leaked a list of its own internal systems passwords

25th June 2018
Computer Weekly - Most infosec pros would trust hacker-tested products

20th June 2018
BBC News - Council demanded payment card details via email

5th June 2018
ZD Net - Over 115,000 Drupal sites still vulnerable to critical flaw

1st June 2018
Computer Weekly - Security suppliers need to interact with community, says researcher

18th May 2018
Global Banking and Finance - Geek Street: Infosecurity Europe’s Newest Feature

28th April 2018
BBC Click - Mining for Money - YouTube Link for outside UK

6th April 2018
The Register - Is it a bird? Is it a plane? No, it's a terrible leak of drone buyers' data

2nd April 2018
ITV - The Kyle Files

22nd March 2018
Smashing Security - 070: Facebook and Cambridge Diabolica

21st March 2018
The Register - Symantec cert holdout sites told: Those Google Chrome warnings are not a good look

12th March 2018
New Statesman Tech - Is cryptocurrency mining malware more dangerous than it seems?
The Next Web - How to protect your website from cryptojacking attacks

10th March 2018
The Next Web - How to protect your website from cryptojacking attacks

9th March 2018
The Register - DVLA denies driving licence processing site is a security 'car crash'
Digital Trends - Cryptojacking turns your PC into a Bitcoin mine, but you won’t see a cent

6th March 2018
ZD Net - Nike website flaw exposed sensitive server data

5th March 2018
eWeek - Facebook Automatically Upgrading Links to HTTPS to Boost Security

1st March 2018
Ars Technica - Trustico website goes dark after someone drops critical flaw on Twitter

27th February 2018
Sky News - 'Cryptojacking' attacks surge 1,200% in UK

23rd February 2018
Motherboard - 'Critical' T-Mobile Bug Allowed Hackers To Hijack Users' Accounts

22nd February 2018
CNN Tech - Cryptojackers are hacking websites to mine cryptocurrencies

16th February 2018
BBC Tech Tent (Radio) - Two Sides Of The Crypto-coin
BBC Tech Tent (News) - Two Sides Of The Crypto-coin
The Daily Swig - ‘We’re fortunate that the attackers had a very limited imagination’

15th February 2018
The Express - Could bitcoin break the NHS? Latest crypto-jack attack 'the first of many’, say experts
Bank Info Security - Cryptocurrency Miners: How to Shield Browsers From Bad Guys
Smashing Security - 065: Cryptominomania, Poppy, and your Amazon Alexa

14th February 2018
The Guardian - Huge cryptojacking campaign earns just $24 for hackers

13th February 2018
RT (Live Broadcast) - ‘Cryptojacking’: How your PC can be hacked to mine cryptocurrencies
Motherboard - Creators of In-Browser Cryptocurrency Miner 'Coinhive' Say Their Reputation Couldn't Be Much Worse
Motherboard - The Biggest Cryptocurrency Mining Hack Yet Made a Grand Total of $24
International Business Times - US Courts, UK Privacy Watchdog, Thousands Of Sites Hit By Cryptomining Campaign
PC Mag - Cryptocurrency Miner Invades 4,000 Sites Via Third-Party Tool
Tech Juice - Govt websites are being used by hackers to mine cryptocurrency
The Star - Hackers infect thousands of websites to mine cryptocurrencies
TechDirt - More Than 4,000 Government Websites Infected With Covert Cryptocurrency Miner

12th February 2018
Virus Bulletin - There are lessons to be learned from government websites serving cryptocurrency miners
The Guardian - Cryptojacking attack hits Australian government websites
ABC News - Hackers used Australian government websites to mine cryptocurrency, security researcher says
TechRadar - Nefarious Bitcoin miners have hijacked government websites worldwide
The Times - Hackers force HSE website to hunt for cash
Gizmodo - Cryptojackers Strike Again, Hitting Thousands of Sites Including US and UK Government Pages
TheNextWeb - Government websites have quietly been running cryptocoin mining scripts
Hindustan Times - Over 4,200 US, UK government websites infected with crypto-mining malware: Report
Slash Gear - US, UK government websites infected by cryptomining malware
FossBytes - Government Sites Caught Cryptojacking Off People’s Computers, Crypto Malware Infects 4200 Sites
BuzzFeed - Australian Government Websites Were Being Hijacked To Mine For Cryptocurrency
NakedSecurity - Cryptomining script poisons government websites – What to do
Rappler - At least 4,200 websites had cryptominer active through hacked plugin
Bank InfoSecurity - Government Websites Deliver Cryptocurrency Mining Code
ZD Net - UK government websites, ICO hijacked by cryptocurrency mining malware
Express - Bitcoin price LIVE: BTC price yo-yos as concerns rise for NHS services after CoinHive hack
The Inquirer - Hackers hijack gov-run websites to mine Monero cryptocurrency
HelpNet Security - Thousands of government, orgs’ websites found serving crypto mining script
InfoSecurity Magazine - Crypto-Mining Malware Found on 4000+ Sites
The Irish Times - Irish government websites among those hit by ‘coinjacking’ malware
NewStatesman - The ICO is among several government organisations hit by crypto-mining hackers
RTE - Public service websites among those affected by 'coin-jacking' attack
Metro - Thousands of government sites including Student Loans hacked to mine cryptocurrency
Tech Crunch - Cryptojacking attack hits ~4,000 websites, including UK’s data watchdog
CNET - Government websites hijacked by cryptocurrency-mining malware
Evening Standard - Bitcoin hackers 'hijack power of government websites to mine cryptocurrency'
Express - Cryptocurrency miners hijack NHS computers to create bitcoin-style money using malware
CoinDesk - UK Government Websites Hit By Cryptocurrency Mining Malware
Neowin - Thousands of websites hit by cryptocurrency mining malware
Fortune - How the U.S. Courts Website Unwittingly Became a Cryptocurrency Miner
Insider - Government-linked websites across the world have been shut down as hackers were using them to mine cryptocurrencies
Computer Weekly - Criminals hijack government sites to mine cryptocurrency used to hide wealth
iNews - Government websites hijacked by hackers to mine cryptocurrency
Wired - UK government websites were caught cryptomining. But it could have been a lot worse
Daily Mail - Thousands of websites infected by 'crypto mining' malware
Daily Mail - Bitcoin hackers hijack thousands of UK government computers with visitors’ machines also infected by virus that helps criminals ‘mine’ digital currencies
SC Magazine UK - Government websites, including ICO, hit by cryptocurrency mining campaign
Motherboard - Cryptocurrency Mining Hack That Compromised Thousands of Sites ‘Could Have Been a Catastrophe’
The Journal - Number of websites infected by cryptocurrency hack, Ireland's National Cyber Security Centre says
The Hacker News - Thousands of Government Websites Hacked to Mine Cryptocurrencies
Digital Trends - Government websites fall prey to a plugin injected with a digital coin miner
Dark Reading - Attackers Use Infected Plug-In to Install Cryptomining Tool on Over 4200 Websites
The Independent - Hackers secretly made UK government websites force visitors' computers to mine bitcoin alternative monero
Consumer Affairs - Hackers rifle through thousands of sites panning for cryptocurrency
Futurism - Now Hackers Are Mining Crypto On Government Websites
Business Insider - Government-linked websites across the world have been shut down as hackers were using them to mine cryptocurrencies

11th February 2018
The Telegraph - Government websites secretly mined cryptocurrency
The Register - UK ICO, USCourts.gov... Thousands of websites hijacked by hidden crypto-mining code after popular plugin hacked
Sky News - Hackers take UK Government websites offline and infect thousands more worldwide
BoingBoing - Cryptocurrency-mining malware spotted on more than 4200 sites including UK, US, and Australian government sites
The Sun - HACK ATTACK UK government websites shut down as hackers infect thousands of pages with Bitcoin-like mining software
BBC News - Hackers hijack government websites to mine crypto-cash
Bleeping Computer - U.S. & UK Govt Sites Injected With Miners After Popular Script Was Hacked
IT News - Australian govt sites hijacked by crypto miner
US News - U.S., UK Government Websites Infected With Crypto-Mining Malware: Report
Engadget - Government websites fall prey to cryptocurrency mining hijack
The Guardian - Government websites hit by cryptocurrency mining malware
CIO Australia - Thousands of U.K. and U.S. websites infected with cryto-mining malware
Finder - Government websites hit in cryptojacking attack
Reuters - U.S., UK government websites infected with crypto-mining malware: report
Manchester Evening News - Manchester council's website could have been hacked by crypto-coin miners
MIT Technology Review - A cryptojacking attack hit thousands of websites, including government ones

6th January 2018
BBC Click - Live and Clicking - YouTube link for outside UK

3rd January 2018
The Register - Bug-finders' scheme: Tick-tock, this tech's tested by flaws.. but who the heck do you tell?

30th November 2017
The Register - Oops: LinkedIn country subdomains SSL cert just expired

16th November 2017
The Register - Does UK high street banks' crappy crypto actually matter?
The Register - Drone maker DJI left its private SSL, firmware keys open to world+dog on GitHub FOR YEARS

3rd November 2017
The Register - El Reg assesses crypto of UK banks: Who gets to wear the dunce cap?

30th October 2017
The Register - RIP HPKP: Google abandons public key pinning

23rd October 2017
The Register - Sarahah anonymous feedback app told: 'You're riddled with web app flaws'
The Next Web - Teen ‘compliments app’ Sarahah is reportedly rife with security issues

17th October 2017
The Register - uBlock Origin ad-blocker knocked for blocking hack attack squawking

15th September 2017
The Register - Equifax mega-breach: Security bod flags header config conflict

8th September 2017
The Register - HSBC biz banking crypto: The case of the vanishing green padlock and... what domain are we on again?

31st August 2017
Risky Business - HPKP as an attack vector
BBC Click - Is quantum encryption the key to cyber-security?

25th August 2017
Hashed Out - Industry Experts Agree: Don’t Use Key Pinning (HPKP)

25th August 2017
The Register - GTFO of there! Security researchers turn against HTTP public key pinning

24th August 2017
Smashing Security - 039: Woah - are we talking to a cyborg?
Graham Cluley - Smashing Security #039: Woah - are we talking to a cyborg?

16th August 2017
The Register - Months after breach at the 'UnBank' Ffrees, customers complain: No one told us

11th August 2017
Hashed Out - Snake Oil Security: Signs of Security (& Crypto) Snake Oil

7th August 2017
BBC Click - Could you be paying for things using just your hand?

5th August 2017
BBC Click - What happens in Vegas...

3rd August 2017
BBC Click - Hacking with Hawaiian garlands

2nd August 2017
BBC Click - Where hackers go to hone their skills

1st August 2017
BBC Click - The hi-tech badges made for hackers
TripWire - Cyber Security Heroes Part 5: Scott Helme
UK Fast - CyberSecurity Exper Week: Ransomware with Scott Helme

29th July 2017
BBC Click - Fear and Coding in Las Vegas

17th July 2017
Motherboard - It’s Trivially Easy to Hack into Anybody’s Myspace Account

10th July 2017
The Register - The AA's copped to credit data blurt, but what about car-crash incident response?

3rd July 2017
BBC News - AA Shop investigating 13 gigabyte data breach
Motherboard - The AA Exposed Emails, Credit Card Data, and Didn’t Inform Customers
Ars Technica - HTTPS Certificate Revocation is broken, and it’s time for some new tools

1st June 2017
White Paper - Cryptography across industry sectors

19th May 2017
Google I/O - Getting the Green Lock: HTTPS Stories from the Field (Google I/O '17)

29th April 2017
BBC Click - Click investigates a company claiming to offer 'absolute security' and discovers all is not what it seems. - (YouTube version for outside UK)

28th April 2017
Silicon - Researcher Finds Super Secure Email Service Nomx ‘Riddled’ With Security Flaws
ZDnet - Nomx, the "most secure" email service, can be easily hacked, say researchers
InfoSecurity Magazine - Nomx Researchers Defend Work, Dispute Unfair Test Claims
Daily Mail - 'World's most secure' email service is riddled with security flaws that leave it vulnerable to being hacked

27th April 2017
BBC Technology - BBC exposes flaws in 'world's most secure' email service (non-UK link)
Ars Technica - Punching holes in nomx, the world’s “most secure” communications protocol
The Register - Super-secure Pi-stuffed nomx email server box given a good probing
Motherboard - ‘World’s Most Secure’ Email Service Is Easily Hackable
InfoSecurity Magazine - Researcher Alleges Email Security Appliance Contains Catalog of Errors
SC Magazine - Nomx 'secure email server' challenged by British researchers
Hacker News - An analysis of the Nomx secure communications device
Graham Cluley - Nomx? No thank you

3rd March 2017
Motherboard - London Cops' Emails Sent With No Encryption, Open to Interception

27th February 2017
root.cz - Postřehy z bezpečnosti: i LED diody mohou zradit

13th February 2017
Shop Talk - 250: Web Security with April King and Alex Sexton

1st February 2017
Digital Trends - HTTPS use has finally reached its 'moment of critical mass’

25th January 2017
Ars Technica - Ars announces HTTPS by default (finally)

19th January 2017
F5 - The 2016 TLS Telemetry Report

2nd December 2016
Chrome Releases - Stable Channel Update for Desktop

12th October 2016
The Next Web - How to create a really cool Wi-Fi map of your neighborhood

13th September 2016
SC Magazine - GM recalls millions of vehicles over software fault

12th September 2016
Smashing Magazine - Content Security Policy, Your Future Best Friend

12th September 2016
Infosecurity Magazine - GM Recalls Millions of Cars After Critical Bug Found

9th September 2016
Windows IT Pro - Security Sense: The End of Non-Secure-by-Default Websites is Nigh

6th September 2016
Qualys Blog - Is HTTP Public Key Pinning Dead?

31st August 2016
InfoQ - Mozilla's Observatory Website Security Analysis Tool Available

26th July 2016
Ars Technica - Ecotricity plugs password reset security hole in EV charging app

26th July 2016
The Register - UK 'leccy car company Ecotricity patches leaky car recharge app

21st July 2016
KeyCDN - X-Frame-Options – How to Combat Clickjacking

18th July 2016
Infosecurity Magazine - Steelcon - When Hackers Went North

9th May 2016
Quartz - Nissan developers copied code from the internet, pasted it into a remote-access app

4th May 2016
The Verge - Nissan app developer busted for copying code from Stack Overflow

26th Apr 2016
KeyCDN - Let’s Encrypt Leaves Beta – HTTPS Statistics

10th Apr 2016
Noupe - Securityheaders.io: How Safe is Your Web Space?

5th Apr 2016
Motherboard - Bug in Domino's Pizza App Allowed Hackers to Get Free Pizza for Life

2nd Mar 2016
Independent Online - [Cyber hijackers will control your car](Cyber hijackers will control your car)

26th Feb 2016
ThreatPost - Total Recall: Troy Hunt Breaks Down His Nissan Hack

25th Feb 2016
Jalopnik - Nissan Does The Right Thing, Suspends App Downloads Until They Fix Leaf Hacking Issues
SC Magazine - NissanConnect EV taken offline after LEAF hack
BT - Nissan pulls companion app after car hack flaw is revealed online
CNET - Nissan suspends NissanConnect EV smartphone app over serious hacking concerns
Slash Gear - Nissan Shuts Down NissanConnect EV App Due To Hacking Exploit
Slash Gear - Nissan Leaf security vulnerability allows remote access to vehicle functions
TechDirt - Nissan Forgets Security Exists, Opens Leaf Owners To Remote Attack
Tech Radar - The Nissan Leaf is hackable. Here is what owners need to know
Financial Times - Nissan disables app for electric Leaf car amid hacking risks
The Inquirer - Nissan Leaf cars are susceptible to hacking
AutoExpress - Nissan Leaf phone app disabled over hacking risk
The Verge - Nissan pulls the Leaf's phone app after security vulnerabilities come to light
The Telegraph - Nissan suspends Leaf app after electric car hacked
CBS News - Nissan Leaf car app is taken offline after hack exposed
The Mirror - Nissan Leaf HACKED: Japanese firm scrambles to fix electric car security flaw
CIO Online - Nissan apologizes, shutters mobile app that left Leaf EV hackable
Threatpost - Nissan Car Hack Allowed Remote Access
Global News - Nissan Leaf app disabled after claims in-car system could be hacked
Wired - Nissan disables Leaf car app after security scare
BBC Radio Newcastle - Today's North East
Moterhboard - Nissan Disables App that Let Hackers Drain the Battery on Its Electric Car
ArsTechnica - Nissan’s connected car app offline after shocking vulnerability revealed
BBC News - Nissan disables Leaf app after car hack risk revealed online
InfoSecurity Magazine - Nissan Disables App After Remote Hack Demo
The Register - Don't take a Leaf out of this book: Nissan electric car app has ZERO authentication
Engadget - Nissan disables its Leaf remote control app (update)
USA Today - Nissan Leaf app deactivated because it's hackable
TechWeek Europe - Nissan Leaf Can Be Hacked From Other Side Of The Planet
The Washington Times - Nissan disables app after hackers show how to remotely hack 200k electric LEAF cars
Inverse - Hackers Can Mess With Your Nissan Leaf From Anywhere in the World

24th Feb 2016
CSO Online - Hackers can access the Nissan Leaf via insecure APIs
Softpedia News - Nissan LEAF Cars Have Exposed APIs, Can Be Abused via the Internet
Slash Gear - Nissan Leaf vulnerability opens climate controls to hackers
The Next Web - Nissan Leaf can be hacked from anywhere in the world through insecure APIs
International Business Time - Hacker takes control of Nissan electric vehicle from other side of the world through Leaf app
Autoblog - Nissan Leaf app contains cyber vulnerability, researcher says [UPDATED]
SC Magazine - Researchers hack Nissan LEAF from half way across the world
Jalopnik - How The Nissan Leaf Can Be Hacked Via Web Browser From Anywhere In The World
Tom's Hardware - Nissan Leaf Cars Can Be Hacked Through A Web Link
Digital Trends - Nissan’s Leaf EV can be hacked from anywhere, with just an Internet connection
The Verge - Nissan Leaf’s app could let hackers run down batteries and see trip logs
Wired - Nissan Leaf electric cars vulnerable to hacking
Transport Evolved - Major Security Flaw With NissanConnect EV Telematics System Means Hackers Can Access Your LEAF Electric Car With Just Its VIN
InsideEVs - Nissan LEAF Vulnerable To Hacking (w/video)
BBC News - Nissan Leaf 'security flaw' exposed by security expert
The Guardian - Hackers can control Nissan Leaf's heating and access driving history
ZDNet - Nissan Leaf hackable through insecure APIs
Motherboard - Hackers Can Download Trip Histories, Tamper With Fans of Nissan Electric Cars
BBC News - Nissan Leaf electric cars hack vulnerability disclosed
Graham Cluley - Lousy Nissan LEAF security leaves cars open to online exploitation
Troy Hunt - Controlling vehicle features of Nissan LEAFs across the globe via vulnerable APIs

16th Feb 2016
IT Pro - Hackers could use VoIP phones to eavesdrop on you

15th Feb 2016
The Register - IP freely? Your VoIP phone can become a covert spy tool...

12th Feb 2016
VTech T&C Change - BBC World Service - Tech Tent

10th Feb 2016
BBC News - Parents urged to boycott VTech toys after hack

4th Feb 2016
Heise Security - Web-Dienst prüft Präsenz sicherheitsrelevanter HTTP-Header

26th Jan 2016
The Register - Now you can easily see if a site's HTTP headers are insecure, beams dev

19th Jan 2016
Prof Alan Woodward - Why Do So Few Use Security Headers?

19th Jan 2016
BBC News - Asda bug exposed online shopping payment details

6th Jan 2016
The Register - Docker proffers guide to better headers

30th Dec 2015
Diogo Mónica - Creating a CSP Policy from Scratch

29th Dec 2015
Diogo Mónica - From F to A+: Getting Good Grades on Website Security Evaluations

19th Dec 2015
@SwiftOnSecurity - Tweet

17th Dec 2015
@SwiftOnSecurity - Tweet

10th Dec 2015
The Next Web - This tool helps you check if you’re using the right security headers in your Website

17th Nov 2015
Chrome Developer Summit (Emily Stark) - Deploying HTTPS: The Green Lock and Beyond

19th Oct 2015
Yan Zhu - Sniffing browser history using HSTS + CSP

4th Sep 2015
Microsoft Ignite New Zealand - Building a secure anti-social.network

1st Sep 2015
Troy Hunt - Introducing you to browser security headers on Pluralsight

27th Aug 2015
Information Security Buzz - Securing your Web Application Through HTTP Headers

24th Aug 2015
Graham Cluley - Subway app's security update leaves a queasy feeling in my stomach

19th Aug 2015
Pluralisght - Introduction to Browser Security Headers

5th Aug 2015
B-Sides Manchester - How widely used are security based HTTP response headers?

26th May 2015
Graham Cluley - How to monitor XSS attacks and other security threats on your website, in real-time

31st March 2015
TechTarget - Amid growing SSL concerns, Qualys expands free public SSL tester

25th February 2015
The Register - Why does the NSA's boss care so much about backdoors when he can just steal all our encryption keys?

17th October 2014
Inside IT - Pudel-Lücke: Die Neunzigerjahre schlagen zurück

16th October 2014
IB Times - What is POODLE? The Latest Online Security Threat After Shellshock and Heartbleed

15th October 2014
The Register - Twitter, Cloudflare kill SSL 3.0 ... and here's how YOU CAN TOO
Qualys - SSL 3 is dead, killed by the POODLE attack
Graham Cluley - The POODLE bug internet vulnerability! Watch this video then check your browser
Ivan Ristic - SSL 3 is dead, killed by the POODLE attack

15th August 2014
Forbes - Hotel Booking Website Nightmare

8th July 2014
SC Magazine (UK) - Hotel Hippo closes for good after data breach
IT Security Guru - Hotel Hippo closed by parent after vulnerability disclosure

7th July 2014
Graham Cluley - Hotel Hippo website goes belly-up after massive security failure

3rd July 2014
SC Magazine (.com) - HotelHippo offline after security pro finds flaws
Graham Cluley - Hotel Hippo website shockingly insecure, customer data at risk
dataIQ - Top hotel customers hit by 'appalling' breach at booking site

2nd July 2014
The Register - Travel website Hotel Hippo yanked offline after data leaks spotted
SC Magazine (UK) - ICO probes Facebook/HotelHippo data privacy
IT Pro - Hotel booking site taken down over data breach fears
Softpedia - HotelHippo Website Down for Security Reasons
Help Net Security - "Secure" UK hotel booking site leaking customer data

1st July 2014
BBC - Booking site HotelHippo.com in 'appalling' data leak
Neowin - Security consultant condemns hotel booking site for "appalling" data leak

12th April 2014
CloudFlare Blog - Certificate Revocation and Heartbleed

27th February 2014
RouterPwn - EE BrightBox

7th February 2014
The Register - EE rolls out Brightbox fix... but it WON'T stop packet sniffers, DNS meddlers – infosec bod
Threat Post - DATA LEAKS PATCHED IN EE BRIGHTBOX ROUTERS; CSRF VULNERABILITY REMAINS
ISP Review - EE UK Deploy Partial Fix for BrightBox Broadband Router Security Woes

21st January 2014
IB Times - EE BrightBox Router Problem Being Fixed After Security Flaw Discovery
Tech Radar - EE promises to plug security hole found in Brightbox routers
ZD Net - Emergency fix in the works for EE router flaw
InfoSecurity Magazine - EE Acknowledges Router Flaws and Promises Fix

20th January 2014
BBC - EE rushes to fix broadband box security risk
The Register - EE BrightBox routers can be hacked 'by simple copy/paste operation'
TechWorld - EE to issue patch to 350,000 Brightbox routers after security holes exposed
IT Pro - EE BrightBox router could expose customer data
TechWeek Europe - EE Admits To Security Flaw In Brightbox Routers
V3 - EE admits Bright Box router security flaw
Computer Weekly - EE routers vulnerable to ‘incredibly easy’ hack
TripWire - BRIGHTBOX ROUTERS FROM EE VULNERABLE TO REMOTE ACCESS
Recombu - EE BrightBox security update incoming after personal data hack claims
Get Safe Online - Security flaw on EE broadband routers

18th January 2014
ISP Review - EE UK Rush to Fix Security Flaw in BrightBox Broadband Routers

17th January 2014
Threat Post - BRIGHTBOX HOME, SMB ROUTERS LEAK VOLUMES OF DATA

16th January 2014
Softpedia - Flaws in EE’s BrightBox Router Expose WPA Keys, Passwords and ISP User Credentials
Reddit - EE BrightBox router hacked - bares all if you ask nicely

15th January 2014
SecList - EE BrightBox router hacked - bares all if you ask nicely