Articles about breach

Padlock

Indian telco Reliance Jio denies claims of 100m record data breach

A row over data security is gripping India, with Reliance telco brand Jio denying claims it has leaked the details of 120 million customers. The FoneArena blog was first to spot data purporting to be LTE-only network Jio customer information on the now-suspended magicapk.com. While FoneArena asserts the information was …

Cybercriminals getting as good as nation state spies – report

The European energy sector is being targeted by advanced threat actors seeking proprietary information to advance the capabilities of domestic companies, according to FireEye Mandiant. The latest annual report by FireEye's incident response arm further warns that cyber threat groups are also targeting European industrial …
John Leyden, 14 Mar 2017

Good guy Logic Supply resolves breach in days, unlike some companies

US-based industrial computer supplier Logic Supply has reset user passwords following a suspected security breach. Unauthorised access through the firm's website on 6 February may have exposed customer/company names, usernames and passwords, and order information. Payment card details were not exposed, Logic Supply reassured …
John Leyden, 8 Feb 2017

Data breach notification law finally makes it to Australia's Parliament

Australia's long-awaited and long-delayed data breach notification laws are back on the political agenda, after the nation's House of Representatives passing the legislation yesterday. The bill now before Australia's Senate is the rather limp document that landed in October 2016. Companies will have the chance to keep mum …

Laptop-light GoCardless says customers' personal data may have been lifted

London-based payment processing firm GoCardless is warning customers that their personal information might have been exposed following the theft of 19 laptops from its offices last month. The "password protected" (not encrypted) laptops contained a file with customer personal data including email address, passport number, date …
John Leyden, 7 Feb 2017

Particle accelerator hacked: Boffins' hashed passwords beamed up

UPDATE The Australian Nuclear Science and Technology Organisation (ANSTO) is investigating a computer security breach at the Australian Synchrotron that saw hackers steal scientists' usernames and passwords Friday. Hackers of as yet unknown origin hit systems hosting the web portal where researchers from ANSTO and third parties can …
Darren Pauli, 3 Feb 2017
Grand Theft Auto (1997)

Gamers warned to swerve phish-hooks after forum breach

The personal details of 2.5 million gamers have been leaked following a breach of unofficial Xbox 360 and PSP forums. XBOX360 ISO and PSP ISO were hacked in 2015 but the extent of the leak only became public this week. Private details, including email addresses, account passwords and IP addresses, of 2.5 million PlayStation …
John Leyden, 1 Feb 2017

Suffered a breach? Expect to lose cash, opportunities, and customers – report

More than a third of organisations that experienced a breach last year reported substantial customer, opportunity and revenue loss. The finding is one of the key takeaways from the latest edition of Cisco's annual cybersecurity report, which also suggests that defenders are struggling to improve defences against a growing …
John Leyden, 31 Jan 2017

Marketing company leaks 17,000 recorded phone calls, many with credit card numbers

More than 400,000 phone call recordings that include names, addresses, phone numbers and credit card information have been leaked online by Florida marketing company VICI Marketing following suspected security blunders. The 28GB database was publicly-accessible and included recordings of inbound and outbound phone calls. …
Darren Pauli, 30 Jan 2017
Yahoo! billion-record breach notice email

Yahoo! boo! hoo! hoo!: Verizon! hits! brakes! on! $4.8bn! biz! gobble!

Yahoo!'s sale to Verizon has been delayed, following revelations last year of historical data security breaches. News of the deferral of the $4.8bn Verizon deal came as Yahoo! released its Q4 earnings results on Monday. "Yahoo! had previously stated that it expected to close the transaction in Q1," it said. "However, given …
John Leyden, 24 Jan 2017
Donald Trump thumbs up photo via Shutterstock

Trump's 'cyber tsar' Giuliani among creds leaked in mass hacks

Passwords used by Donald Trump's incoming cybersecurity advisor Rudy Giuliani and 13 other top staffers have been leaked in mass hacks, according to a Channel 4 investigation. Giuliani, incoming national security advisor Lt Gen Michael Flynn and various cabinet members of Trump's administration had their details included in …
John Leyden, 20 Jan 2017

Crims shut off Ukraine power in wide-ranging anniversary hacks

Hackers of unknown origin cut power supplies in Ukraine for a second time in 12 months as part of wide-ranging attacks that hit the country in December. The attacks were revealed at the S4x17 conference in Miami in which Honeywell security researcher Marina Krotofil offered reporters some detail into the exploitation that …
Darren Pauli, 12 Jan 2017
Riven Media http://www.shutterstock.com/gallery-1141187p1.html

Hacker: Lol, I pwned FBI.gov! Web devs: Nuh-uh, no you didn't

Updated A hacker is claiming to have breached the FBI's website security, dumping staffers' email addresses and SHA1-scrambled password hashes with salts online. Meanwhile, the makers of the site's publishing software say it's all a hoax. A miscreant using the handle @cyberzeist claims to have infiltrated Plone CMS used by FBI.gov, …
Darren Pauli, 5 Jan 2017

Web-exposed MongoDB installs wiped by bitcoin ransoming script scum

Some 2,000 MongoDB installations have been compromised by an attacker demanding administrators pay 0.2 bitcoins (US$206) to have lost data returned. Victor Gevers (@0xDUDE), penetration tester and chairman of the GDI.foundation, noticed the attacks while reporting exposed non-password-protected MongoDB installations to owners …
Darren Pauli, 4 Jan 2017

Top-Secret-cleared SOCOM medics hit in 11GB govt database leak

A Pentagon subcontractor has exposed the names, locations, Social Security Numbers, and salaries of US Military Special Operations Command (SOCOM) healthcare professionals. The cleartext and openly accessible database – said to be at least 11 gigabytes in size – also included names and locations of at least two Special Forces …
Darren Pauli, 3 Jan 2017

A year in infosec: Bears, botnets, breaches ... and elections

How often can we say that an IT blunder might have changed the course of world history? Hillary Clinton’s use of a private email server whilst serving as outgoing US President Barack Obama’s Secretary of State became a key element in the US presidential election this year. The FBI investigation around Clinton’s use of a …
John Leyden, 26 Dec 2016

PayAsUGym breach exposes passwords

Fitness website PayAsUGym has been breached in a hack that may have exposed up to 400K emails and passwords. In a breach notice to users, the firm admitted one of its servers was hacked after “underground researchers” posted screenshots purporting to show PayAsUGym’s hacked database via Twitter. The 1x0123 hacker crew later …
John Leyden, 19 Dec 2016
Very colourful For Sale sign (limited offer etc). Photo by Shutterstock

FYI! – Your! hacked! Yahoo! account! is! worth! $0.0003!

The hacked database containing the account details of more than one billion Yahoo! users is reportedly being sold for a meager $300,000. This according to a report by the New York Times, which spoke with researchers at US computer security biz InforArmor. Those eggheads claim to have knowledge of at least three groups – two …
Shaun Nichols, 19 Dec 2016

Create a news alert about breach, or find more stories about breach.

Biting the hand that feeds IT © 1998–2017