Danny Bradbury reports: Two separate internet affiliate networks have closed vulnerabilities that exposed potentially millions of records in one of the most sensitive areas: payday loans. US-based software engineer Kevin Traver contacted us after he found two large groups of short-term loan websites that were giving up sensitive personal information via separate vulnerabilities. These groups…
Category: Business Sector
Floor covering provider Headlam discloses data breach
Reuters reports: Floor coverings distributor Headlam Group said on Tuesday there had been an unauthorised access to some of its computer systems, resulting in some data being accessed. Certain back office systems were affected, including the email system which is now restored, the company said. Read more on Reuters.
Tesla Model X Has Flaw Allowing It to Be Hacked and Stolen
Well, now that this story has been picked up by Car and Driver, expect a lot more attention to be paid to this by both white hats and not-so-white hats. Roberto Baldwin reports: Automakers work hard to reduce the possibility that hackers can steal their cars. But, it’s an ongoing battle between the people who…
Pakistan International Airlines Data Hacked: Threat Actor Put Databases Up For Sale At Dark Web
BOL reports: Pakistan International Airlines (PIA) reportedly suffered a major security breach after its network access and database were put on sale for $4,000 on the dark web. According to a media report, an Israeli firm named KELA (the firm tracks ransomware trends and identifies threats to international organizations and government setups) spotted a threat…
Law In Order hit by ransomware attack
Ry Crozier reports: Law In Order, an Australian supplier of document and digital services to law firms, suffered a ransomware infection over the weekend that is believed to be the Netwalker malware. The company confirmed the attack in a statement on its website, which it had managed to resurrect by Tuesday evening behind the protection of Cloudflare….
Over 300K Spotify accounts hacked in credential stuffing attack
Lawrence Abrams reports: Hackers have been attempting to gain access to Spotify accounts using a database of 380 million records with login credentials and personal information collected from various sources. For years, users have complained that their Spotify accounts were hacked after passwords were changed, new playlists would appear in their profiles, or their family…