Zynga experienced a data breach after a hacker called 'Gnosticplayers' stole users' sensitive information.

Zynga's titles boast more than a billion players, worldwide, which is a number that would make most gaming outfits green with envy.

Naturally, their success has painted a giant target on the company.

The popular video site Vimeo now finds itself in hot water and faces a lawsuit for allegedly violating the Illinois Biometrics Information Privacy Act. Moreover, the act requires all private companies collecting biometric information to maintain a publicly available, written policy that explains their practices concerning this type of information.

Google is taking additional steps to provide a safer and more secure environment for its massive user base.  Chrome is the most widely used browser in the world. In recent months, Google has made moves to provide better password security. Most recently, they released a Chrome Extension called Password Checkup that scans all of your stored login credentials to see if they've been found in data breaches.

A team of six researchers from Germany has discovered a critical flaw in the way that popular PDF viewers display data. This makes it possible for an attacker to exfiltrate data from encrypted PDF files.

The researchers tested twenty-seven different desktop and web-based PDF viewer apps.

Beware of pop-up browser updates
Researchers at FireEye have recently unearthed a particularly nasty new campaign that is both multi-faceted and dangerous. These hacked websites display a seemingly innocuous pop-up message informing the site visitor that they need a browser update.

Malvertising Attacks: what you should know
Hackers and scammers have a new tool in their toolbox, and they're making rapid use of it.  Recently, researchers from Confiant have discovered a new malvertising attack involving a Chrome for iOS exploit. They discovered an unknown group of attackers getting around the browser's built-in pop-up blocker to deliver fake ads.

DoorDash confirmed that an unauthorized third party accessed nearly five million of its users' data. According to information released by the company, the breach occurred on May 4th, 2019.

The unknown parties accessed information on the company's drivers, merchants, and customers who joined DoorDash on or before April 5th, 2018.

The data taken by the unknown attackers includes:  names, email addresses, delivery addresses, order history, phone numbers, and hashed passwords.

One of the most common means by which malware winds up on the computers of its victims is via attachment extensions such as email. In fact, 92% of malware is delivered by email. All it takes is one careless moment.  One-click to open a file that turns out to be poisoned and you're in for a world of trouble.

Meanwhile, the SOHOpelessly Broken 2.0 study has been released by Independent Security Evaluators. The picture it paints of routers and the so-called 'smart' devices that make up the rapidly expanding Internet of Things (IoT) is not pretty.

Accordingly, the researchers sum up their findings as follows:

"Today, we show that security controls put in place by device manufacturers are insufficient against attacks carried out by remote adversaries.

Do you use the password manager LastPass?  If so, you're certainly not alone.  In recent years it has seen its popularity surge and has grown to become the most popular app of its type on the web. Tavis Ormandy discovered a critical flaw in the app's design allowing some user data to become compromised.