Charlie Osborne reports: An open database is the source of a data leak leading to the exposure of 425GB in sensitive documents belonging to financial companies. On Tuesday, vpnMentor researchers led by Noam Rotem said the database appears to be connected to MCA Wizard, a now-defunct app that appears to have been developed by Advantage Capital…
Category: Business Sector
Hackers hit NutriBullet website with credit card-stealing malware
Zack Whittaker reports: Magecart hackers have struck again, this time targeting the NutriBullet website. According to new research by security firm RiskIQ, hackers broke into the blender maker’s website several times over the past two months, injected malicious credit card-skimming malware on its payment pages and siphoned off the credit card numbers and other personal data —…
Koodo Mobile’s Data Breach Notification: Customer Accounts and Data Sold on Dark Web
Security Magazine reports: Koodo Mobile, a Canadian mobile flanker brand started by Telus in 2008, has announced customer data has been breached and is now being sold on various Dark Web websites. Koodo is mostly oriented toward younger customers and differs from its parent Telus by not requiring a fixed term contract. Koodo currently provides postpaid,…
ZA: Eskom’s IT systems still slow after data centre ‘incident’
ITWeb reports: Power utility Eskom’s IT systems are still slow after the parastatal suffered a data centre “incident” last week. The embattled power utility last week announced it had experienced an “incident” at its data centre, which saw the business implement business continuity plans to ensure minimal interruptions. In new a statement, the parastatal says it experienced…
LinkedIn Appeals Important CFAA Ruling Regarding Scraping Public Info Just As Concerns Raised About Clearview
Mike Masnick writes: Last fall we were happy to see the 9th Circuit rule against LinkedIn in its CFAA case against HiQ. If you don’t recall, the CFAA is the “anti-hacking” law that has been widely abused over the years to try to shut down perfectly reasonable activity. At issue is whether “scraping” information violates a…
European electricity association warns of office network breach
Steve Ranger reports: An association of European electricity companies has confirmed that hackers have breached its office network. “ENTSO-E has recently found evidence of a successful cyber intrusion into its office network,” the association said in a statement. It added that a risk assessment had been performed and contingency plans are now in place to reduce…