compromised

now browsing by tag

 
 

Verticalscope #hacked again: At least 2.7 million #accounts #compromised in second major #data #breach

Source: National Cyber Security – Produced By Gregory Evans

Verticalscope #hacked again: At least 2.7 million #accounts #compromised in second major #data #breach

Hackers have once again targeted Verticalscope, a Canadian firm that manages hundreds of popular web discussion forums with over 45 million user accounts. The breach has compromised at least 2.7 million user accounts. The Toronto-based company runs a network of support forums and online community websites catering to a wide range of interests, from outdoor and automotive to sports and technology.

In June 2016, Verticalscope admitted that it had suffered a data breach that saw at least 45 million user accounts compromised and their data leaked in a blog post on Leakedsource.com.

The latest breach impacted six websites, including Toyotanation.comJeepforum.com – the company’s second-most popular website – and Watchuseek.com, security expert Brian Krebs first reported.

Security researcher and founder of Hold Security, Alex Holden, notified Krebs last week that hackers were selling access to Verticalscope.com and a number of other sites operated by the company.

Holden initially suspected that a nefarious actor was just trying to resell data stolen in the 2016 breach.

“That was before he contacted one of the hackers selling the data and was given screen shots indicating that Verticalscope.com and several other properties were in fact compromised with a backdoor known as a ‘Web shell’,” Krebs wrote. “With a Web shell installed on a site, anyone can remotely administer the site, upload and delete content at will, or dump entire databases of information — such as usernames, passwords, email addresses and Internet addresses associated with each account.”

The hackers reportedly obfuscated certain details in the screenshots that allowed him to locate at least two backdoors on Verticalscope’s website and Toyotanation.com, one of the company’s most popular forums.

Krebs reported that a simple search on one of Verticalscope’s compromised domains led to a series of Pastebin posts that have since been deleted “suggesting that the individual(s) responsible for this hack may be trying to use it to advertise a legally dicey new online service called LuiDB”.

“Similar to Leakedsource, LuiDB allows registered users to search for account details associated with any data element compromised in a breach — such as login, password, email, first/last name and Internet address,” Krebs noted. “The first search is free, but viewing results requires purchasing a subscription for between $5 and $400 in Bitcoin.”

“The intrusion granted access to each individual website files,” Verticalscope said in a statement to Krebs. “Out of an abundance of caution, we have removed the file manager, expired all passwords on the 6 websites in question, added the malicious file pattern and attack vector to our detection tools, and taken additional steps to lock down access.”

The company did not provide any details regarding when and how the attack took place or who carried out the hack. IBTimes UK has reached out to Verticalscope for further details.

The post Verticalscope #hacked again: At least 2.7 million #accounts #compromised in second major #data #breach appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

FICO’s New Fraud Solution Can Detect Compromised Cards Faster

Source: National Cyber Security – Produced By Gregory Evans

FICO’s New Fraud Solution Can Detect Compromised Cards Faster

FICO has announced the launch of FICO Card Compromise Manager, an anti-fraud solution that proactively detects and prioritizes compromised merchants and data breaches or theft involving card data. According to a press release publicizing the news, Card Compromise Manager detects card present, card not present and ATM fraud faster than…

The post FICO’s New Fraud Solution Can Detect Compromised Cards Faster appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

AP police recruitment website compromised by ‘hacking class’

AP1

Source: National Cyber Security – Produced By Gregory Evans

AP police recruitment website compromised by ‘hacking class’

HYDERABAD: The Andhra Pradesh State-Level Police Recruitment Board (APSLPRB), whose tag line is “transparency through technology”, has fallen prey to hackers. The portal is managed in Hyderabad. Three days ahead of accepting online applications (August 3) for filling Stipendiary Cadet Trainee (SCT) constable posts in various wings of AP police department through the newly launched […]

The post AP police recruitment website compromised by ‘hacking class’ appeared first on National Cyber Security.

View full post on National Cyber Security

Blockchain Social Media Steemit Compromised; Investigation Underway

shutterstock_356278754-825x510

Source: National Cyber Security – Produced By Gregory Evans

Blockchain Social Media Steemit Compromised; Investigation Underway

Blockchain-based social media service Steemit today reported that its platform has faced a security breach. The cyber attack, according to CEO Ned Scott, affected over 260 user accounts. As he confirmed further, the platform have also incurred a small loss – worth around $85,000 – in the form of their native cryptocurrencies Steem Dollars and […]

The post Blockchain Social Media Steemit Compromised; Investigation Underway appeared first on National Cyber Security.

View full post on National Cyber Security

He is special guest at the Ground Zero Summit 2015 being organised by Indian Infosec Consortium – a group of ethical hackers. “Threat to national security has moved to the digital dimension. Terrorist organisations have turned social networks and online forums into recruitment hotbeds and propaganda mechanisms. We need a security apparatus in the digital space to address this threat. Hackers are the face of this digital army.” The actor said he is bringing his whole team including scriptwriters of the show to observe and interact with the ethical hacker community. (Also Read: Tabu Has Shown Interest in 24, Says Director ) “From November 22, I will start shooting for 24. It will go on air in 2016. When an actor prepares for a role, we often start to live like the character. Some call it method acting. We meet real life people like the character and try to understand their nuances, their life,” he said. As per the summit’s website, speakers will share details of the espionage mission as well as hold sessions on hacking of cellular networks, medical devices in hospitals, using technical loopholes in them. The consortium claims to have discovered cyber espionage operation under which phones of Indian Army personnel, who had downloaded some mobile application related to news, had been compromised by hackers based in Pakistan. IIC CEO Jiten Jain has said that the findings were handed over to security agencies who promptly acted and sanitised the infected handset early this year.

Source: National Cyber Security – Produced By Gregory Evans

He is special guest at the Ground Zero Summit 2015 being organised by Indian Infosec Consortium – a group of ethical hackers.   “Threat to national security has moved to the digital dimension. Terrorist organisations have turned social networks and online forums into recruitment hotbeds and propaganda mechanisms. We need a security apparatus in the digital space to address this threat. Hackers are the face of this digital army.”   The actor said he is bringing his whole team including scriptwriters of the show to observe and interact with the ethical hacker community. (Also Read: Tabu Has Shown Interest in 24, Says Director )   “From November 22, I will start shooting for 24. It will go on air in 2016. When an actor prepares for a role, we often start to live like the character. Some call it method acting. We meet real life people like the character and try to understand their nuances, their life,” he said.   As per the summit’s website, speakers will share details of the espionage mission as well as hold sessions on hacking of cellular networks, medical devices in hospitals, using technical loopholes in them.   The consortium claims to have discovered cyber espionage operation under which phones of Indian Army personnel, who had downloaded some mobile application related to news, had been compromised by hackers based in Pakistan.  IIC CEO Jiten Jain has said that the findings were handed over to security agencies who promptly acted and sanitised the infected handset early this year.

He is special guest at the Ground Zero Summit 2015 being organised by Indian Infosec Consortium – a group of ethical hackers. “Threat to national security has moved to the digital dimension. Terrorist organisations have turned social networks and online forums into recruitment hotbeds and propaganda mechanisms. We need a security apparatus in the digital space to address this threat. Hackers are the face of this digital army.” The actor said he is bringing his whole team including scriptwriters of the show to observe and interact with the ethical hacker community. (Also Read: Tabu Has Shown Interest in 24, Says Director ) “From November 22, I will start shooting for 24. It will go on air in 2016. When an actor prepares for a role, we often start to live like the character. Some call it method acting. We meet real life people like the character and try to understand their nuances, their life,” he said. As per the summit’s website, speakers will share details of the espionage mission as well as hold sessions on hacking of cellular networks, medical devices in hospitals, using technical loopholes in them. The consortium claims to have discovered cyber espionage operation under which phones […]

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post He is special guest at the Ground Zero Summit 2015 being organised by Indian Infosec Consortium – a group of ethical hackers. “Threat to national security has moved to the digital dimension. Terrorist organisations have turned social networks and online forums into recruitment hotbeds and propaganda mechanisms. We need a security apparatus in the digital space to address this threat. Hackers are the face of this digital army.” The actor said he is bringing his whole team including scriptwriters of the show to observe and interact with the ethical hacker community. (Also Read: Tabu Has Shown Interest in 24, Says Director ) “From November 22, I will start shooting for 24. It will go on air in 2016. When an actor prepares for a role, we often start to live like the character. Some call it method acting. We meet real life people like the character and try to understand their nuances, their life,” he said. As per the summit’s website, speakers will share details of the espionage mission as well as hold sessions on hacking of cellular networks, medical devices in hospitals, using technical loopholes in them. The consortium claims to have discovered cyber espionage operation under which phones of Indian Army personnel, who had downloaded some mobile application related to news, had been compromised by hackers based in Pakistan. IIC CEO Jiten Jain has said that the findings were handed over to security agencies who promptly acted and sanitised the infected handset early this year. appeared first on National Cyber Security.

View full post on National Cyber Security

Raptr Accounts Hacked, Accounts Compromised

rtr41hk4

Source: National Cyber Security – Produced By Gregory Evans

 Powered by Max Banner Ads It has emerged that gaming service Raptr has become the latest high profile hacking casualty. This follows the 2011 hack of Sony’s PlayStation Network, as well as the more recent DDOS cyber attacks against both PSN and the Microsoft Xbox Live platforms. Raptr has shared few concrete details about how their security was compromised, but users are strongly advised to change their passwords immediately. Emails have been sent out to account holders alerting them to the Raptr hack, as noted by NeoGAF forum member, Yatesl. “I’ve just received an email from Raptr. Some users may use them to aggregate achievements, and they also partner with AMD for their GeForce Experience type program,” he said in a post on the popular gaming message boards. In the email from Raptr, also posted on the official Raptr company website, CEO Dennis Fong details the extent of the hack and urges users to change their passwords immediately, by heading to the Raptr account page. Fong encourages users who share the same Raptr username and password longin information with other services to change login details on those services. “User names, email addresses, password hashes and some first and last names may have been […]

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post Raptr Accounts Hacked, Accounts Compromised appeared first on National Cyber Security.

View full post on National Cyber Security

Bitly website hacked, accounts credentials compromised

Bitly(bit.ly), the Popular URL shortening service, has issued an urgent security warning about a security breach that exposed account’s credentials. The company says they found no evidence suggesting that any accounts have been accessed by the intruders. Read More….

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post Bitly website hacked, accounts credentials compromised appeared first on National Cyber Security.

View full post on National Cyber Security