Drew Todd

Portland

Journalist and Marketing Associate at secureworld.io

lake oswego '16 | u of o '20 | go zers

Featured in: Favicon

nancyonnorwalk.com Favicon

hongkongnewsnetwork.com

Articles

Massive InfoStealer Malware Breach Exposes 184 Million Credentials

4 days ago | secureworld.io | Drew Todd

Massive InfoStealer Malware Breach Exposes 184 Million Credentials4:17 In a significant cybersecurity incident, security researcher Jeremiah Fowler has uncovered an unprotected database containing more than 184 million login credentials. The 47.42 GB trove included plaintext usernames and passwords linked to major platforms such as Google, Apple, Microsoft, Facebook, Instagram, Snapchat, and Roblox.
OneDrive File Picker Flaw Exposes Cloud Storage to Over-Permission Risks

1 week ago | secureworld.io | Drew Todd

OneDrive File Picker Flaw Exposes Cloud Storage to Over-Permission Risks5:08 A new report from Oasis Security reveals a critical security flaw in Microsoft's OneDrive File Picker, exposing users to significant data privacy and access control risks. The issue stems from over-permissioned OAuth scopes, which give third-party applications broad access to a user's entire OneDrive, even when only a single file is intended for upload.
Retailers Under Siege: Victoria's Secret Latest Victim of Cyberattacks

1 week ago | secureworld.io | Drew Todd

Retailers Under Siege: Victoria's Secret Latest Victim of Cyberattacks3:58 Victoria's Secret has taken its website offline and disabled some in-store services after experiencing a cybersecurity incident, marking the latest disturbing trend of high-profile attacks targeting global retailers.
99% of Organizations Expose Sensitive Data to AI Tools, Report Shows

2 weeks ago | secureworld.io | Drew Todd

99% of Organizations Expose Sensitive Data to AI Tools, Report Shows4:20 As organizations race to adopt artificial intelligence tools to boost productivity, automate tasks, and gain competitive insights, many are unknowingly exposing their most sensitive data in the process. From generative AI models embedded in everyday apps to custom-built internal tools, the rapid spread of AI is outpacing the ability of security teams to maintain proper controls.
Coinbase Flips the Script on Ransomware Criminals

2 weeks ago | secureworld.io | Drew Todd

Coinbase Flips the Script on Ransomware Criminals3:51 In a bold response to a sophisticated insider-led data breach, Coinbase has turned the tables on cybercriminals who recently targeted the organization with ransomware. Coinbase, the largest cryptocurrency exchange platform in the U.S., refused to pay a $20 million ransom and instead offered the same amount as a bounty for information leading to the arrest of the hackers.
Inside LockBit: New Leak Exposes Ransomware Giant's Operations

2 weeks ago | secureworld.io | Drew Todd

Inside LockBit: New Leak Exposes Ransomware Giant's Operations4:20 One of the most prolific ransomware groups in the world just suffered a rare setback: a major internal leak revealing how it truly operates. The breach offers an unprecedented look into LockBit's ransomware-as-a-service (RaaS) ecosystem, providing cybersecurity defenders with valuable intelligence on affiliate operations, payload generation, and negotiation tactics.
Meta Scores $168M Legal Victory Over NSO Group for Spyware Abuse

3 weeks ago | secureworld.io | Drew Todd

Meta Scores $168M Legal Victory Over NSO Group for Spyware Abuse4:44 In a landmark ruling that reverberates across the cybersecurity and tech policy landscape, Meta has won a $167.7 million judgment against NSO Group, the Israeli company behind the Pegasus spyware.
Why World Password Day Is a Perfect Reminder to Up Your Security Game

1 month ago | secureworld.io | Drew Todd

Why World Password Day Is a Perfect Reminder to Up Your Security Game4:19 As we celebrate World Password Day on May 1st, it's clear that traditional password tricks—like swapping "a" with "@" or adding an exclamation point at the end—are no longer fooling hackers. In an age where generative AI and machine learning power cyberattacks, password-cracking tools have become more sophisticated, making these outdated techniques ineffective.
Norwalk Council Adopts Tree Master Plan with 30-Year Goal to Grow Canopy

1 month ago | nancyonnorwalk.com | Ashley Smith |Drew Todd |Bryan Meek |Tysen Canevari

NORWALK, Conn. — The Norwalk Common Council adopted the city’s first-ever Tree Master Plan on April 22, setting a 30-year goal to increase canopy coverage from 43% to 53% through a data-driven, equity-focused planting strategy. “The quality of life for Norwalk’s community members is strongly influenced by the urban forest,” the plan states.
CT could withhold driver’s licenses from tax delinquents

1 month ago | nancyonnorwalk.com | Keith Phaneuf |Drew Todd |Bryan Meek |Tysen Canevari

Faced with a slumping economy and likely big cuts in federal aid, state legislators are once again weighing whether to turn delinquent taxpayers over to collection agencies — and block renewal of their driver’s licenses or vehicle registrations. But the measure is also sparking pushback from groups that say it unfairly targets the poor, even as Connecticut treats wealthy delinquent taxpayers with kid gloves.