“Whoops! Has LifeLock been unlocked?”
Massive data breaches are becoming more and more commonplace, and often companies involved in those breaches provide subscriptions to identity theft services for the victims of those breaches, such as LifeLock. Security researcher Nathan Reese came across a vulnerability that allowed an attacker to access email addresses to LifeLock customers, giving way for phishers and identity thieves to wreak havoc. This article further discusses the vulnerability, the impact it could have had on customers, and Symantec’s response.
Submitted by Anonymous
on