Another day, another leak. Another leak, another entity claiming it’s not real data. Another leak, another frustrating experience trying to responsibly disclose. According to Safety Detectives, they found exposed data related to an app called Transact Campus: Transact Campus’ technology integrates several payment functions into a single mobile platform to power student purchases at higher…
Author: Dissent
LockBit tries to get media’s attention for their response to a Mandiant analysis
One of the most hated threat intel companies in the world is Mandiant, and they are hated because they are often right. But this week, LockBit decided to respond in a somewhat different way to one of Mandiant’s recent claims. The ransomware group published a notice on their leak site yesterday saying that 356,841 files…
Italian city of Palermo shuts down all systems to fend off cyberattack
Bill Toulas reports: The municipality of Palermo in Southern Italy suffered a cyberattack on Friday, which appears to have had a massive impact on a broad range of operations and services to both citizens and visiting tourists. Palermo is home to about 1.3 million people, the fifth most populous city in Italy. The area is…
Vietnam arrests Taiwanese national amid banking security breach
Khanh Vu and Phuong Nguyen report: Police in Vietnam have arrested a Taiwanese national amid an investigation into a cybersecurity breach in the country’s banking system, the Ministry of Public Security said. “A number of foreign groups have attacked and infiltrated into the system of Vietnam’s large commercial banks to steal their clients’ money,” the…
AU: Researcher finds ACY Securities leaking 60 GB of User Data
ACY Securities describes itself as one of Australia’s fastest growing multi-asset online CFD trading providers. But as first reported by HackRead, the trading firm was leaking 60 GB of user data until independent researcher Anurag Sen persisted in trying to alert them to a misconfigured elasticsearch database. As seen by Hackread, the data included personally…
Novartis says no sensitive data was compromised in cyberattack
Lawrence Abrams reports: Pharmaceutical giant Novartis says no sensitive data was compromised in a recent cyberattack by the Industrial Spy data-extortion gang. Industrial Spy is a hacking group that runs an extortion marketplace where they sell data stolen from compromised organizations. Yesterday, the hacking group began selling data allegedly stolen from Novartis on their Tor…