Addresses

now browsing by tag

 
 

Cash #Converters is #HACKED: Cyber #criminals hold UK #customer #credit card numbers, addresses and #passwords to #ransom after major #security breach

Source: National Cyber Security – Produced By Gregory Evans

Hackers who attacked the now defunct website of second hand goods store Cash Converters may have access to the account details of thousands of customers.

Usernames, passwords, delivery addresses and potentially partial credit card numbers are among the data believed to have been stolen.

The culprits are said to be holding the information to ransom while the firm works with law enforcement authorities to investigate the incident.

It is not known exactly how many customers were impacted in the hack or when it happened.

 

Cash Converters operates high street stores where customers can trade items like jewellery and electronics for money.

The affected website, which was put out of action in September 2017 and replaced with an updated version, lets people purchase these products online.

As well as cash trade ins, the company offers small financial loans to its customers.

The data breech is only believed to affect customers of the Perth-founded firm who are based in the UK.

In a breach notification email sent to customers, a Cash Converters spokesman said: ‘Please be reassured that, alongside the relevant authorities, we are investigating this as a matter of urgency and priority.

‘We are also actively implementing measures to ensure that this cannot happen again.

‘Although some details relating to the cybersecurity breach remain confidential while Cash Converters works with the relevant authorities, we will continue to provide as much detail as possible as it becomes available.

‘The current webshop site was independently and thoroughly security tested as part of its development process.

‘We have no reason to believe it has any vulnerability, however additional testing is being completed to get assurance of this.

‘Our customers truly are at the heart of everything we do and we are both disappointed and saddened that you have been affected.

‘We apologise for this situation.’

Cash Converts reportedly received an email from hackers who claiming to have gained access to the data.

They threatened to release the data if they were not paid, which means anyone who used the old site before September 22 could be at risk.

Customers have been to advised to change their passwords and the firm has forced a reset for all UK webshop users.

Speaking about the breach, Jon Topper, CEO of UK webhosting firm The Scale Factory, said: ‘When migrating away from old solutions it’s important to bear in mind that old digital assets will still be running and available online until such time as they are fully decommissioned.

‘As a result they should still be treated as ‘live” which means maintaining a good security posture around them, keeping up with patching and so forth.

‘In their customer notification, Cash Converters were quick to point out that the old site was operated by a third party, possibly intending to deflect responsibility for this breach.

‘This definitely won’t fly under General Data Protection Regulation regulations coming into force next year.

‘Companies running server infrastructure that handles customer data should be engaging with experts to review their security posture ahead of that, in order to avoid being slapped with a large fine.’

The post Cash #Converters is #HACKED: Cyber #criminals hold UK #customer #credit card numbers, addresses and #passwords to #ransom after major #security breach appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Hackers exploited an Instagram bug to get celebrity phone numbers and email addresses

Source: National Cyber Security – Produced By Gregory Evans

An Instagram bug allowed hackers to access contact phone numbers and email addresses for high-profile users, the company said today. The bug was discovered recently in Instagram’s application programming interface, or API, which the service uses to communicate with other apps. Instagram declined to specify which users had been targeted,…

The post Hackers exploited an Instagram bug to get celebrity phone numbers and email addresses appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Millions of LinkedIn passwords and email addresses published online

Source: National Cyber Security – Produced By Gregory Evans

Your ads will be inserted here byEasy Plugin for AdSense.Please go to the plugin admin page toPaste your ad code OR Suppress this ad slot. LinkedIn has revealed millions of its users’ email addresses and passwords have been published online from a security breach that occurred in 2012. The leak could affect more than 100 […] View full post on AmIHackerProof.com | Can You Be Hacked?

The post Millions of LinkedIn passwords and email addresses published online appeared first on National Cyber Security.

View full post on National Cyber Security

ACS frames cybersecurity imperative as Victoria addresses ICT, security disasters

dreamstime_xl_59705849Government support great but proactive investments needed to close skills gap The Australian Computer Society (ACS) is pushing for renewed investment in cybersecurity skills as newly announced ICT-strategy commitments by the NSW and Victoria governments put additional pressure on cybersecurity skills that are already lagging demand and are expected to further outpace overall ICT-skills growth […] View full post on AmIHackerProof.com | Can You Be Hacked?

ISIS Twitter Accounts, IP Addresses Connected To British Government, Hackers Claim

Source: National Cyber Security – Produced By Gregory Evans

ISIS Twitter Accounts, IP Addresses Connected To British Government, Hackers Claim

At least three social media accounts belonging to supporters of the Islamic State group have been traced back to the British government, according to the hacking group VandaSec. The group, which is comprised of four male teenagers, says it discovered that the United Kingdom’s Department for Work and Pensions (DWP) owns Internet protocol (IP) addresses used by at least three jihadists to access Twitter accounts and conduct online recruitment and propaganda campaigns, reported the Mirror. The IP addresses, a type of unique identification number that is associated with every computer and mobile phone that logs onto the Internet, appeared to be based in Saudi Arabia, but upon further inspection, the hackers were able to trace them back to DWP’s London offices. The IP addresses, a type of unique identification number that is associated with every computer and mobile phone that logs onto the Internet, appeared to be based in Saudi Arabia, but upon further inspection, the hackers were able to trace them back to DWP’s London offices. “Don’t you think that’s strange?” one of the hackers asked the Mirror. “We traced these accounts back to London, the home of the British intelligence services.” Some have suggested that British officials could […]

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post ISIS Twitter Accounts, IP Addresses Connected To British Government, Hackers Claim appeared first on National Cyber Security.

View full post on National Cyber Security

CMC talk addresses challenge of cyber-security and warfare

sf_Richard_Clarke_2__thumb

Source: National Cyber Security – Produced By Gregory Evans

The United States is vulnerable to cyber-attacks of every ilk, from theft to all-out war. This was the message delivered Tuesday evening at Claremont McKenna’s Athenaeum by Richard Clarke, CEO of the Good Harbor Security Risk Management company. Mr. Clarke, whose talk was called “Cybersecurity in 2015: from Theft to Destruction,” brings a lot of experience to bear on the subject. Among his accomplishments are a decade as a White House official, during which time he counseled three consecutive presidents on national security in the information age. The ways corporate and governmental security can be breached via computer are myriad, and their execution technical. Mr. Clarke sought to simplify things by breaking down the four main types of digital attacks. They can be remembered via the acronym CHEW, which stands for cyber-crime, cyber-hacktivism, cyber-espionage and cyber-war. Cyber-crime represents basic theft, in which an individual or individuals reach into peoples’ accounts and remove money, and is a pretty well-known problem. Cyber-hacktivism is when a group, unhappy with the actions of another group, hacks into their system in order to embarrass or sabotage them. In a way, the Sony Pictures Entertainment Hack, which took place last November, is a case of cyber-hacktivism, […]

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post CMC talk addresses challenge of cyber-security and warfare appeared first on National Cyber Security.

View full post on National Cyber Security

Sul Ross Symposium addresses cyber-security

Sul Ross Symposium addresses cyber-security

ALPINE – Sul Ross State University’s CSI – Computer Science Initiative – addressed cyber-security during a Nov. 13 symposium at the Gallego Center. The symposium, which featured experts from Washington, D.C. and California, addressed the “Center of Academic Excellence in […]

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

View full post on National Cyber Security

Home Depot: Hackers also stole 53M email addresses

Home Depot: Hackers also stole 53M email addresses

NEW YORK (AP) — Hackers stole 53 million email addresses in addition to customers’ card data, Home Depot said Thursday. The nation’s largest home improvement chain had disclosed the massive, months-long breach of 56 million debit and credit cards in […]

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

View full post on National Cyber Security

LinkedIn flaw helps hackers uncover email addresses

LinkedIn flaw helps hackers uncover email addresses

A pair of self proclaimed “ethical hackers” have discovered what they call a “logic flaw” with the social networking site LinkedIn. The flaw could allow anyone with just a basic grasp of navigating a website to authenticate email address using […]

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

View full post on National Cyber Security

Hacker Publishes 5 Million Gmail Addresses, Passwords

Hacker Publishes 5 Million Gmail Addresses, Passwords

On September 9, 2014, a user named tvskit published a link to 4,929,090 Gmail addresses and passwords on the Russian Bitcoin Security forum. In his post, tvskit claimed that at least 60 percent of the passwords were still valid. The […]

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

View full post on National Cyber Security