News

Facebook’s Twitter account is hijacked by notorious OurMine hacking group

Facebook’s official Twitter account started posting message from the OurMine hacking gang just before midnight UK time on Friday.

Dutch university paid $220,000 ransom to hackers after Christmas attack

Maastricht University has admitted paying a 30 bitcoin ransom to hackers who compromised its network in the immediate run-up to Christmas 2019, and infected it with the Clop ransomware.

Apple fined €25 million for deliberately slowing down old iPhones

Apple has been hit with a 25 million Euro fine (US $27.5 million) after it added battery management features to iOS that slowed down the performance of older iPhones.

Android users at risk from Bluetooth hijack attack, and are warned of “short distance worm” threat

Hackers could exploit a flaw on unpatched Android 8.0 and 9.0 phones to run malicious code such as a worm, with no user interaction required.

bitdefender.com

How your network could be hacked through a Philips Hue smart bulb

Security researchers have shared some details of vulnerabilities they have found in Philips Hue smart bulbs that could be exploited by hackers to compromise networks remotely.

Read more in my article on the Hot for Security blog.

Wacom drawing tablets are spying on every app you open, and sending the data back to Wacom

Do you read the privacy policy for your mouse when you install it? Your keyboard? Your drawing board?

Maybe you should… because it might set you off on a journey where you’ll discover surprising things are happening with your private data.

tripwire.com

How your screen’s brightness could be leaking data from your air-gapped computer

It may not be the most efficient way to steal data from an organisation, let alone the most practical, but researchers at Ben-Gurion University in Israel have once again detailed an imaginative way to exfiltrate information from an air-gapped computer.

Read more in my article on the Tripwire State of Security blog.

Smashing Security #164: A bitter pill to swallow

A gallery is tricked into giving millions to a fraudster, software tells doctors to push opioids onto patients, and an artist finds a novel way to trick Google Maps into thinking there’s a traffic jam.

All this and more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault.

WhatsApp flaw gave hackers access to files from Windows and Macs

If you run WhatsApp’s desktop client on your Mac or PC then you would be wise to make sure it’s up-to-date, following the revelation that a security researcher uncovered a critical security flaw.

Twitter security hole allowed state-sponsored hackers to match phone numbers to usernames

Twitter admits to a bug that might have put privacy-conscious users at risk – by revealing what phone numbers are associated with which Twitter accounts.

bitdefender.com

Man admits hacking Nintendo, leaking details of Switch games console

Despite a previous brush with the law, Ryan Hernandez went on to hack and hack again.

Read more in my article on the Hot for Security blog.

Did Everton sign Everton? Twitter hack blamed for soccer sign-up screwup

If Everton Football Club’s Twitter account was really hacked to say it was signing Everton Soares then it needs to look at hardening its defence.

If the hack occurred at all, of course.

Coronavirus – hackers exploit fear of infection to spread malware

With sad predictability cybercriminals are exploiting the Coronavirus outbreak that occurred in Wuhan, mainland China, and is now causing new infections around the world.

Travelex hobbles back online, one month after ransomware hit it hard

The beleaguered company, hit by the REvil ransomware on New Year’s Eve, has not yet been able to restore all of its online services.