Data loss

Smashing Security #120: Silk Road with Deliveroo

Online drug dealers get busted due to poor OPSEC! People are still failing to wipe their USB sticks properly! A potential presidential candidate is outed as a former hacker! Flat Earthers! Pi! Empathy!

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Paul Ducklin.


1 min read

Myspace has lost all the music users uploaded between 2003 and 2015

You cannot trust the likes of Myspace to look after your data securely. Use internet services to archive your content if you wish, but you’d be wise to have your own backup too.


1 min read

bitdefender.com

Man arrested for selling one million Netflix, Spotify, Hulu passwords

The WickedGen website bragged that it had over 120,000 users and almost one million sets of account details, offering monthly and yearly membership plans for those who wanted “access to thousands of premium accounts across a huge range of services.”

Read more in my article on the Hot for Security blog.


0 sec read

Citrix hackers may have stolen six terabytes worth of files

The FBI suspects that the hackers used a technique known as “password spraying”.


1 min read

bitdefender.com

Facebook sues quiz app developers who allegedly stole users’ private data through browser plugins

Facebook is taking a stand against a pair of Ukrainian app developers who it claims scraped personal information from users’ profiles.

Read more in my article on the Hot for Security blog.


0 sec read

bitdefender.com

FBI boss warns businesses of Chinese hackers stealing their intellectual property

What’s the biggest cybersecurity threat for US businesses?

If FBI chief Christopher Wray is to be believed, it’s China.

Read more in my article on the Bitdefender Business Insights blog.


0 sec read

bitdefender.com

139 US bars, restaurants and coffeeshops infected by credit-card stealing malware

North Country Business Products (NCBP), a provider of point-of-sales systems, has revealed that 139 of its clients have been hit by a malware infection that stole the payment card details of consumers.

Read more in my article on the Hot for Security blog.


0 sec read

bitdefender.com

450,000 usernames and passwords stolen from Coinmama cryptocurrency broker

Coinmama, a site that is supposed to “make it fast, safe and fun” to buy Bitcoins and Etherium with a credit card, has suffered a data breach that has resulted in almost half a million customers having their personal details breached.

Read more in my article on the Hot for Security blog.


0 sec read

VFEmail suffers ‘catastrophic’ attack, as hacker wipes email service’s primary and backup data

There will be many angry customers of VFEmail who will be distraught at the thought that years’ worth of irreplaceable personal and business correspondence may have been wiped out. It’s understandable that some might turn their fury towards VFEmail.

But VFEmail is a victim too.


1 min read

Botched Mumsnet update allowed users to see details of strangers’ accounts

Popular British parenting site Mumsnet apologises after software update allows users to log into strangers’ accounts.


1 min read

Donald Trump’s ‘Executive Time’ leak – journalists retype documents to protect White House source

Such a leak is likely to anger Trump and the White House, of course, and so Axios had to be careful not to throw their source under the bus.


1 min read

Hackers hit Airbus, steal personal details of employees

Aircraft manufacturer Airbus is investigating a security breach that has seen hackers steal personal information from its systems.

Read more in my article on the Hot for Security blog.


0 sec read

B&Q data leak exposes information on 70,000 thefts from its stores, including names of suspected offenders

A database of 70,000 offender and incident logs was only supposed to be accessible internally within UK hardware store B&Q, but was instead exposed for anyone to access – no password required.

So you’d expect B&Q to fix this pretty quickly after being told about the problem, right?


1 min read

bitdefender.com

Angry ex-employee blamed for hack of WordPress plugin developer, and email to customers warning of security hole

Users of the popular WordPress translation plugin WPML (also known as WordPress MultiLingual) received an email from a hacker claiming to expose serious security vulnerabilities in the software that allegedly put the customers’ own websites at risk.

Read more in my article on the Hot for Security blog.


0 sec read

The Collection #1 data breach – what you need to do about it

A huge collection of email addresses and passwords, which can be used in attempts to break into online accounts, has been discovered.

If you are one of the affected users, what should you do about it?


2 min read

bitdefender.com

Town of Salem hack exposes details of 7.6 million gamers

Just before Christmas, hackers managed to break into a database belonging to a popular online game and steal the details of over seven million players.

Read more in my article on the Hot for Security blog.


0 sec read