“Hundreds of millions of infostealer logs” included in new compromised credentials corpus: 124 million unique passwords added to HIBP Pwned Passwords database.
#infosec
https://www.forbes.com/sites/daveywinder/2026/06/18/124-million-unique-passwords-exposed-in-new-infostealer-log-dataset/
124 Million Unique Passwords Exposed In New Infostealer Log Dataset
A new collection of 124 million unique passwords from hundreds of millions of malware stealer log records has been confirmed by the Have I Been Pwned service.
May 31 Dashlane Attack: Here’s How Hackers Copied Some Password Vaults
After some Dashlane users were locked out of accounts and a limited number of encrypted password vaults were downloaded, the hacker attack methodology has been revealed.
How long can the AI-impact keep uncovering vulns? It’s almost like there’s an infinite number in these codebases. Still, at least Google paid out $200,000 to Chrome researchers this month.
https://www.forbes.com/sites/daveywinder/2026/06/05/google-chrome-149-new-update-fixes-429-security-flaws-22-critical/
Google Chrome 149: New Update Fixes 429 Security Flaws, 22 Critical
Google has just dropped a critical browser security fix for 3.5 billion users—Chrome 149 patches an incredible 429 vulnerabilities. Here’s how to install the update now.
New Android 14, 15 And 16 Update Fixes Actively Exploited Security Flaw
Google has released a security update for users of Android 14, 15 and 16, fixing a zero-day flaw that it confirmed is already “under limited, targeted exploitation.”
Dashlane has now confirmed that a small number of encrypted password vaults were downloaded during brute-force attack incident.
Article updated.
#infosec
https://www.forbes.com/sites/daveywinder/2026/06/01/dashlane-confirms-brute-force-password-attacks-targeting-some-users/
Dashlane Confirms Brute-Force Password Attacks Targeting Some Users
As people take to social media after some accounts are disabled, Dashlane confirms it is monitoring brute-force attacks targeting an unknown number of users.
Dashlane Confirms Brute-Force Password Attacks Targeting Some Users
As people take to social media after some accounts are disabled, Dashlane confirms it is monitoring brute-force attacks targeting an unknown number of users.
151 Chrome Security Flaws, 22 Critical, Fixed In New Google Update
Google has released a Chrome update patching a large number of new security flaws: 151 in total, 22 of them rated as critical severity.
2 New Microsoft Defender Zero-Days Exploited—Patch Now Rolling Out
Microsoft has confirmed an emergency security update as CISA warns that two new Defender zero-days are being exploited by attackers.
Microsoft Does U-Turn On Edge ‘By Design’ Password Vulnerability
Microsoft has confirmed a “defense-in-depth change will come to every supported version of Edge” after initially refusing to address browser password security issue.
Users of macOS, beware: a new password stealer leverages the brands of Apple, Google and Microsoft in new SHub Reaper attacks.
https://www.forbes.com/sites/daveywinder/2026/05/18/new-password-stealer-spoofs-apple-google-and-microsoft-in-1-attack/
New Password Stealer Spoofs Apple, Google And Microsoft In 1 Attack
Users of macOS, beware: a new password stealer leverages the brands of Apple, Google and Microsoft in a single devastating attack.
+ 
= $0