Once again, breaches are discovered when security firms read forums where data are shared or posted for sale. Risk Based Security discusses what they found involving DriveSure: In a lengthy post to prove the databases’ high quality, the threat actor detailed the leaked files and the user information. Typically, hackers only share valuable segments or…
Category: Business Sector
Report: American Cable and Internet Giant Comcast Exposed Development Database Online
This is a leak that deserves its own post. Website Planet reports: On December 1st, 2020 the WebsitePlanet research team in cooperation with Security Researcher Jeremiah Fowler discovered a non-password protected database that contained over 1.5 billion records. There were references to Comcast throughout the database including multiple subdomains, urls, and internal IP addresses. The publicly visible…
FTC Gives Final Approval to Settlement with Zoom over Allegations the Company Misled Consumers about Its Data Security Practices
The Federal Trade Commission finalized a settlement with Zoom Video Communications, Inc., over allegations it misled consumers about the level of security it provided for its Zoom meetings and compromised the security of some Mac users. The final order requires Zoom to implement a comprehensive security program, review any software updates for security flaws prior to release and ensure…
Lawmakers press NSA for answers about Juniper hack from 2015
Justin Katz reports: A group of Democratic lawmakers is calling on the National Security Agency to account for its part in the five-year-old breach of Juniper Networks, following a congressional investigation of the company last year. “The American people have a right to know why NSA did not act after the Juniper hack to protect…
Russian hack brings changes, uncertainty to US court system
MaryClaire Dale of AP reports: Trial lawyer Robert Fisher is handling one of America’s most prominent counterintelligence cases, defending an MIT scientist charged with secretly helping China. But how he’ll handle the logistics of the case could feel old school: Under new court rules, he’ll have to print out any highly sensitive documents and hand-deliver…
CA: Serious Prison Time for Hackers Behind Wolf & Associates Breach
Tyler Hayden reports: A pair of habitual offenders behind one of the biggest data breaches in Santa Barbara County history pleaded guilty last week to multiple felony counts that will send them to prison for a combined 33 years. San Diego residents Gordon Welterlen, 37, and Nicole Milan, 31, admitted to hacking a computer network…