David Purdum reports: An investigation into an ongoing cyberattack that impacted thousands of betting accounts at the largest online sportsbooks has been escalated to the FBI, an industry source told ESPN. Some customers, who were compromised and had funds withdrawn out of their personal bank accounts, were struggling to reach DraftKings and FanDuel representatives and…
Category: Business Sector
Unknown Hacker Makes Away With $5 million From Ankr Protocol
Jimmy Kelly reports: In a Tweet released by the popular DeFi Protocol Ankr, the protocol made it public that it had just suffered a cyber attack wherein the hacker having minted a thousand trillion of the reward-bearing token for BNB staked on the protocol (aBNBc) made away with about 20 trillion which he later converted to BNB and later…
Brazilian debt collection firm pays Hive $500k ransom while SuspectFile spectates it all
Marco A. De Felice (aka @amvinfe) had a bird’s eye view of negotiations between a Brazilian credit recovery and financial solutions firm and the Hive ransomware team. He also got to track the victim’s payment over wallets. Reading his partial transcript from the negotiations, the victim quickly went from an offer of $50k — an…
LastPass’s August incident contributed to a new incident
There’s an update to the LastPass security incident they disclosed in August. LastPass had released its findings from that incident in a September update, posted on their site. But now there’s another a new disclosure involving an incident facilitated by the August incident. LastPass’s CEO, Karim Toubba, writes: We recently detected unusual activity within a third-party…
Ireland’s Data Protection Commission announces decision in Facebook “Data Scraping” Inquiry
Press release: The Data Protection Commission (DPC) has today announced the conclusion to an inquiry into Meta Platforms Ireland Limited (MPIL), data controller of the “Facebook” social media network, imposing a fine of €265 million and a range of corrective measures. The DPC commenced this inquiry on 14 April 2021, on foot of media reports…
5.4 million Twitter users’ stolen data leaked online — more shared privately
Lawrence Abrams reports: Over 5.4 million Twitter user records containing non-public information stolen using an API vulnerability fixed in January have been shared for free on a hacker forum. Another massive, potentially more significant, data dump of millions of Twitter records has also been disclosed by a security researcher, demonstrating how widely abused this bug…