Helen Partz reports: Exmo, a cryptocurrency exchange headquartered in the United Kingdom, has suffered a major security breach causing the platform to freeze all withdrawals. According to a Dec. 21 security notice, Exmo detected suspicious withdrawal activity on Monday, with large amounts of major coins like Bitcoin (BTC) leaving the platform’s hot wallets. Read more on…
Category: Business Sector
Hacked Ledger Database Dumped On Raidforums
Stephen Graves reports: More than a million customer emails that were apparently stolen from hardware wallet manufacturer Ledger were made publicly available on a hacker site today. Ledger said it was still confirming the details of the incident but admitted that the data “indeed could be the contents of our e-commerce database from June, 2020.” The leaked…
Dozens of journalists’ iPhones hacked with NSO ‘zero-click’ spyware, says Citizen Lab
Zack Whittaker report: Citizen Lab researchers say they have found evidence that dozens of journalists had their iPhones silently compromised with spyware known to be used by nation states. For more than the past year, London-based reporter Rania Dridi and at least 36 journalists, producers and executives working for the Al Jazeera news agency were targeted…
Seven states settle with CafePress over 2019 data breach
In August, 2019, this site noted that CafePress had been hacked in February. On October 1, 2019, I shared some of the notification I had received from them via email on September 30 because I found their notification confusing. Yesterday, state attorneys general announced a settlement with CafePress, stemming from the breach. This is the…
Unsecured Azure blob exposed 500,000+ highly confidential docs from UK firm’s CRM customers
Gareth Corfield reports: A business app developer’s unsecured Microsoft Azure blob left more than half a million confidential and sensitive documents belonging to its customers freely exposed to the public internet, The Register can reveal. Information contained in the blob included occupational health assessments, insurance claim documents from US firms underwritten by Lloyds of London, and…
Microsoft says it identified 40+ victims of the SolarWinds hack, and more bad news…
Catalin Cimpanu reports: Microsoft said it identified more than 40 of its customers that installed trojanized versions of the SolarWinds Orion platform and where hackers escalated intrusions with additional, second-stage payloads. The OS maker said it was able to discover these intrusions using data collected by Microsoft Defender antivirus product, a free antivirus product built…