American Express experienced internal problems due to an untrustworthy employee. Afterward, American Express quietly contacted some of its customers with a tersely worded communication that reads, in part, as follows:

"It was brought to our attention that personal information related to your American Express Card account listed above may have been wrongfully accessed by one of our employees in an attempt to conduct fraudulent activity, including potentially opening accounts at other financial institutions.

Zynga experienced a data breach after a hacker called 'Gnosticplayers' stole users' sensitive information.

Zynga's titles boast more than a billion players, worldwide, which is a number that would make most gaming outfits green with envy.

Naturally, their success has painted a giant target on the company.

Facebook has made several high-profile acquisitions, with one of their most recent acquisitions of Oculus Rift for a staggering two billion dollars. Now, rumors are swirling that the company is on track to buy another innovative startup, CTRL-Labs. Makers of an innovative device worn at the wrist that uses brain waves to allow users to control electronic devices.

The popular video site Vimeo now finds itself in hot water and faces a lawsuit for allegedly violating the Illinois Biometrics Information Privacy Act. Moreover, the act requires all private companies collecting biometric information to maintain a publicly available, written policy that explains their practices concerning this type of information.

Google is taking additional steps to provide a safer and more secure environment for its massive user base.  Chrome is the most widely used browser in the world. In recent months, Google has made moves to provide better password security. Most recently, they released a Chrome Extension called Password Checkup that scans all of your stored login credentials to see if they've been found in data breaches.

Beware of pop-up browser updates
Researchers at FireEye have recently unearthed a particularly nasty new campaign that is both multi-faceted and dangerous. These hacked websites display a seemingly innocuous pop-up message informing the site visitor that they need a browser update.

A team of six researchers from Germany has discovered a critical flaw in the way that popular PDF viewers display data. This makes it possible for an attacker to exfiltrate data from encrypted PDF files.

The researchers tested twenty-seven different desktop and web-based PDF viewer apps.

Google heavily regulates gambling and gaming apps on its Play Store.  It's not hard to understand why.  The industry has a long history of gouging and otherwise abusing the people who play their games. In response to the company's heavy-handed regulation of their industry, some app developers have taken to disguise the nature of their unauthorized gambling apps.

Malvertising Attacks: what you should know
Hackers and scammers have a new tool in their toolbox, and they're making rapid use of it.  Recently, researchers from Confiant have discovered a new malvertising attack involving a Chrome for iOS exploit. They discovered an unknown group of attackers getting around the browser's built-in pop-up blocker to deliver fake ads.

DoorDash confirmed that an unauthorized third party accessed nearly five million of its users' data. According to information released by the company, the breach occurred on May 4th, 2019.

The unknown parties accessed information on the company's drivers, merchants, and customers who joined DoorDash on or before April 5th, 2018.

The data taken by the unknown attackers includes:  names, email addresses, delivery addresses, order history, phone numbers, and hashed passwords.