Bill Toulas reports: British classifieds site Gumtree.com suffered a data leak after a security researcher revealed that he could access sensitive personally identifiable data of advertisers simply by pressing F12 on the keyboard. When pressing the F12 key in a web browser, the application will open the developer tools console, which allows you to view…
Category: Business Sector
NY Man Pleads Guilty in $20 Million SIM Swap Theft
Brian Krebs reports: A 24-year-old New York man who bragged about helping to steal more than $20 million worth of cryptocurrency from a technology executive has pleaded guilty to conspiracy to commit wire fraud. Nicholas Truglia was part of a group alleged to have stolen more than $100 million from cryptocurrency investors using fraudulent “SIM swaps,” scams…
McMenamins hit by ransomware attack; chain says customer data appears secure but employee info at risk
Mike Rogoway reports: Portland hotel and brewpub chain McMenamins has been hit by a ransomware attack that left many of its computer systems inoperable. Intruders may have accessed some of its employee records, the company said Wednesday night, but appear to have left customer data untouched. McMenamins said it identified and blocked the attack on…
Transamerica sued by 401(k) participant over data breach
Emile Hallez reports: A breach of 401(k) participant data earlier this year prompted a class action lawsuit this month against Transamerica Retirement Solutions. In June, the company became aware of a change within one of its websites that let employer customers view compromising data about participants in other retirement plans, according to a notice posted by the…
Kronos hit with ransomware, warns of data breach and ‘several week’ outage
Jonathan Greig reports: HR management platform Kronos has been hit with a ransomware attack, revealing that information from many of its high-profile customers may have been accessed. UKG, Kronos’ parent company, said the vital service will be out for “several weeks” and urged customers to “evaluate and implement alternative business continuity protocols related to the…
Arrest in Romania of a ransomware affiliate scavenging for sensitive data
The following is a press release: Europol’s European Cybercrime Centre (EC3) has supported the Romanian National Police (Poliția Română) and the US Federal Bureau of Investigation (FBI) in arresting a ransomware affiliate targeting high-profile organisations and companies for their sensitive data. The suspect – a 41-year-old Romanian national – was arrested today at his home in Craiova, Romania, in the early hours…