Data loss

Smashing Security #124: Poisoned porn ads, the A word, and why why why Wipro?

The hacker who lived the high life after spreading malware via porn sites, Wipro demonstrates how to turn a cybersecurity crisis into a PR disaster, and why are humans listening in to your Alexa conversations?

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Brian Honan.


1 min read

bitdefender.com

Hackers could read users’ Outlook, Hotmail, and MSN email via compromised Microsoft support account

Microsoft says that it had identified that one of its support agents had had their username and password stolen, which allowed hackers to access information stored within users’ email accounts.

Read more in my article on the Hot for Security blog.


0 sec read

Ticketmaster is hit by a £5 million legal action after online payment card theft

A British firm of solicitors, which specialises in helping victims of cybercrime claim compensation, has launched a £5 million (US $6.5 million) legal action against Ticketmaster.


1 min read

tripwire.com

Unsecured databases found leaking half a billion resumes onto the net, no password required

A staggering 590 million resumes have leaked from poorly-secured Chinese companies in just the last three months.

Read more in my article on the Tripwire State of Security blog.


0 sec read

540 million Facebook records left exposed due to sloppy third-party developer security

Security researchers have discovered a huge amount of data containing information about tens of thousands of Facebook users, left available for anyone to access – no password required.

The culprits? Third-party developers.


2 min read

Smashing Security #121: Hijacked motel rooms, ASUS PCs, and leaky apps

An app leaking private conversations and intimate photographs is ignoring requests to fix the problem, hackers poison a security update sent to ASUS PCs, and how to protect your privacy in motel rooms.

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Maria Varmazis.


1 min read

bitdefender.com

Popular family tracking app exposed real-time location data onto the internet – no password required

More than 238,000 individuals users have had their family’s real-time location exposed for weeks on end after an app developer left sensitive data exposed on the internet, without a password.

Read more in my article on the Hot for Security blog.


0 sec read

Smashing Security #120: Silk Road with Deliveroo

Online drug dealers get busted due to poor OPSEC! People are still failing to wipe their USB sticks properly! A potential presidential candidate is outed as a former hacker! Flat Earthers! Pi! Empathy!

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Paul Ducklin.


1 min read

Myspace has lost all the music users uploaded between 2003 and 2015

You cannot trust the likes of Myspace to look after your data securely. Use internet services to archive your content if you wish, but you’d be wise to have your own backup too.


1 min read

bitdefender.com

Man arrested for selling one million Netflix, Spotify, Hulu passwords

The WickedGen website bragged that it had over 120,000 users and almost one million sets of account details, offering monthly and yearly membership plans for those who wanted “access to thousands of premium accounts across a huge range of services.”

Read more in my article on the Hot for Security blog.


0 sec read

Citrix hackers may have stolen six terabytes worth of files

The FBI suspects that the hackers used a technique known as “password spraying”.


1 min read

bitdefender.com

Facebook sues quiz app developers who allegedly stole users’ private data through browser plugins

Facebook is taking a stand against a pair of Ukrainian app developers who it claims scraped personal information from users’ profiles.

Read more in my article on the Hot for Security blog.


0 sec read

bitdefender.com

FBI boss warns businesses of Chinese hackers stealing their intellectual property

What’s the biggest cybersecurity threat for US businesses?

If FBI chief Christopher Wray is to be believed, it’s China.

Read more in my article on the Bitdefender Business Insights blog.


0 sec read

bitdefender.com

139 US bars, restaurants and coffeeshops infected by credit-card stealing malware

North Country Business Products (NCBP), a provider of point-of-sales systems, has revealed that 139 of its clients have been hit by a malware infection that stole the payment card details of consumers.

Read more in my article on the Hot for Security blog.


0 sec read

bitdefender.com

450,000 usernames and passwords stolen from Coinmama cryptocurrency broker

Coinmama, a site that is supposed to “make it fast, safe and fun” to buy Bitcoins and Etherium with a credit card, has suffered a data breach that has resulted in almost half a million customers having their personal details breached.

Read more in my article on the Hot for Security blog.


0 sec read

VFEmail suffers ‘catastrophic’ attack, as hacker wipes email service’s primary and backup data

There will be many angry customers of VFEmail who will be distraught at the thought that years’ worth of irreplaceable personal and business correspondence may have been wiped out. It’s understandable that some might turn their fury towards VFEmail.

But VFEmail is a victim too.


1 min read