Troy Hunt writes: It’s a bit hard to even know where to begin with this one, perhaps at the start and then I’ll try and piece all the bits together as best I can. As you may already know if you’re familiar with this blog, I run the service Have I been pwned? (HIBP) which…
Author: Dissent
Chinese popped-box VPN crims screamed hacker booty in cleartext
Darren Pauli reports: China-based virtual private network provider Terracotta, a favourite of some of the most capable hacking groups, is pumping their stolen user credentials in cleartext. The forehead-slapping gaffe was revealed by RSA fraud prober Kent Backman, while outlining more details about the Terracotta VPN organisation first described in August. All of the nodes Terracotta…
WY: Some U. Wyoming Some student and faculty computers under hacker control
Jeremy Rowley reports: Numerous university email accounts have been exposed to an email containing an attachment with the ability to steal information off of computers. “This is a particularly bad one, as you might expect,” Vice President of Information Technology on campus Robert Aylward said. “It essentially attempts to steal confidential data on your machine….
Regin Spyware Found on Merkel Assistant’s Laptop
Catalin Cimpanu reports: Powerful spying malware infiltrated the personal laptop of the head of the German Federal Chancellery (GFC). The current GFC chief is Peter Altmaier, whose main role is to assist German Chancellor Angela Merkel in the affairs of the German state. The infection was discovered in December 2014, and after further investigation, German…
UK: Marks & Spencer Website Suspended After Customer Data Breach
Tom Jowitt reports: Marks & Spencer temporarily suspended its website on Tuesday night after “technical difficulties” that exposed customer information to other website users. But the British retailer insisted that its website was not hacked by outside third parties, and there is no security risk for affected customers. Read more on TechWeek Europe.
No Bank Card Required: Citigroup Testing Eye-Scanning ATM
James Eng reports: No card reader, no PIN pad, no touch-screen display — how you bank at your ATM could drastically change in the not-so-distant future. Citigroup is testing an automated teller machine made by Canton, Ohio-based Diebold that relies on your smartphone and perhaps an eye scan to dispense your cash. Read more on…