Articles that are tagged
Breaches
Recent News
BREACHES
WIFI probing exposes user's personal data
3 years ago
University of Hamburg, Germany: Researchers conducted a field experiment capturing thousands of passersby's WiFi connection probe requests to determine the type of data transmitted without the device owners realizing it. Many firms track their customers' position and movement. This tracking only uses anonymized MAC addresses, often regarded as GDPR... Read more
University of Hamburg, Germany: Researchers conducted a field experiment capturing thousands of passersby's WiFi connection... Read more
BREACHES
GitHub reveals that 100K npm user accounts compromised
3 years ago
Github discloses login details of roughly 100,000 npm accounts by mid-April, data was breached with stolen OAuth apps token issued to Heroku and Travis-CI. Threats were escalated with a compromised AWS access key, after downloading multiple private npm repositories using the stolen OAuth user tokens. GitHub, Travis CI, and Heroku... Read more
Github discloses login details of roughly 100,000 npm accounts by mid-April, data was breached with... Read more
BREACHES
Microsoft Exchange Server vulnerabilities exploited for financial fraud
3 years ago
The combination of Squirrelwaffle, ProxyLogon, and ProxyShell against Microsoft Exchange Servers is being used to conduct financial fraud through email hijacking. On Tuesday, researchers from Sophos revealed a recent incident in which a Microsoft Exchange Server, which had not been patched to protect it against a set of critical vulnerabilities... Read more
The combination of Squirrelwaffle, ProxyLogon, and ProxyShell against Microsoft Exchange Servers is being used to... Read more
BREACHES
Cyberattacks Knock Out Sites of Ukrainian Army, Major Banks
3 years ago
Several websites of Ukraine's government and military were offline on Tuesday following a series of attacks that targeted the country's banks and military.A Ukrainian cyber defense official said there was no sign of other disruptive actions that the attackers could have carried out. And emergency teams are working to recover... Read more
Several websites of Ukraine's government and military were offline on Tuesday following a series of... Read more
BREACHES
Hackers Exploited MSHTML Flaw to Spy on Government and Defense Targets
3 years ago
On Tuesday, 25th January 2022, cybersecurity researchers Tuesday took the wraps off a multi-stage espionage campaign targeting high-ranking government officials overseeing national security policy and individuals in the defense industry in Western Asia. Trellix, a new company created following the merger of security firms McAfee Enterprise and FireEye, said that... Read more
On Tuesday, 25th January 2022, cybersecurity researchers Tuesday took the wraps off a multi-stage espionage... Read more
BREACHES
Unexplained PII compromised by Ripta Data Breach
4 years ago
Data breach compromising Peronsal Identifiable Information (PII) including the names, social security numbers, addresses, birthdates, Medicare information, health insurance member identification numbers, and claims information of a disputed number of individuals, was disclosed by The Rhode Island Public Transit Authority (RIPTA). It was first detected on August 5, 2021. The... Read more
Data breach compromising Peronsal Identifiable Information (PII) including the names, social security numbers, addresses, birthdates,... Read more
BREACHES
Android apps affected by the Joker malware
4 years ago
The Joker malware has infected at least 14 Android apps, as founded by an analyst at Cybersecurity firm Kaspersky named Tatyana Shishkova. It was first discovered in 2017 and had been a major challenge for Google to tackle it back. An alert has been issued by the mobile security solutions... Read more
The Joker malware has infected at least 14 Android apps, as founded by an analyst... Read more
BREACHES
Half-Billion Compromised Credentials Lurking on Open Cloud Server
4 years ago
Around 586 million sets of credentials had been collected in a compromised cloud storage facility, free for the taking by any cybercrime yahoo who happened to stop by, according to the National Crime Agency’s (NCA) National Cyber Crime Unit in the U.K. The NCA tapped Troy Hunt, creator of the... Read more
Around 586 million sets of credentials had been collected in a compromised cloud storage facility,... Read more
BREACHES
GoDaddy security breach exposes 1.2 million WordPress users' data
4 years ago
The web hosting company Go Daddy recently submitted a filing to the securities and exchange commission on November 22, revealing that an unauthorized third party accessed the email addresses of almost 1.2 million WordPress customers. The Chief Information Security Officer, Demetrius Comes, said that they identified suspicious activity in their... Read more
The web hosting company Go Daddy recently submitted a filing to the securities and exchange... Read more
