Jeremiah Fowler writes: Another day and another big data leak. On July 1st the WebsitePlanet research team in cooperation with Security Researcher Jeremiah Fowler discovered a non-password protected database that contained records of the internet’s largest webmaster portal. Upon further research it appeared that Digital Point had leaked the data of 863,412 users. Digital Point claims to…
Category: Business Sector
Paytm Mall sends legal notice to Cyble after Cyble reports an alleged breach
I’ve covered data security concerns involving digital payment services Paytm in the past, but I didn’t pick up a recent claim by Cyble because their post relied on a tip from “KelvinSec” about “John Wick.” And although Cyble provided a couple of redacted screenshots to support a claim that there had been some incident, Cyble…
Prison phone service Telmate exposes messages, personal info of millions of inmates and their contacts
Paul Bischoff reports: Telmate, a service used by incarcerated inmates at US prisons to communicate with their friends and loved ones, has exposed a database containing tens of millions of call logs, private messages, and personal information about inmates and their contacts. The database was exposed on the web without a password or any other…
AU: Hackers foiled in attempt to steal $90,000 from church abuse survivor in email compromise scam
Airlie Ward reports on yet another case where hackers try to intercept/scam home buyers by posing as their real estate brokers or lawyers and having them wire money to them. In this case, the home buyer was the victim of child sexual abuse by the church, and was using the settlement to buy a home,…
RCMP charge 2 Montreal men in cyberattacks at Canadian Tire, BMO and Simplii
CBC reports: The RCMP have laid charges against two Montrealers after an investigation into high-profile cyberattacks at Canadian Tire, Bank of Montreal and Simplii a few years ago. The RCMP said in a press release Thursday that Jacob Costanzo-Peterson and Félix Costanzo-Peterson have been charged with unauthorized use of a computer, identity theft and possession of a device…
AusCERT says alleged DoE hack came from a third-party
Catalin Cimpanu reports: The Australian Computer Emergency Response Team (AusCERT) denied claims today that hackers had breached the Department of Education, Skills, and Employment (DoE), and downloaded the personal details of more than one million students, teachers, and staff. Rumors of a supposed hack first surfaced yesterday after a hacker shared an archive file on…