Payment card data stolen from an e-commerce platform last year has already netted criminals $1.6 million in card data sales on the dark web. And according to a new report out today, that’s just from the initial card data offering. Stas Alforov and Christopher Thomas of Gemini Advisory report that a Magecart attack on Volusion…
Category: Business Sector
Cyber hackers demand $30m from ‘major international company’ with office in Perth
Daniel Newell reports: A global company with an office in Perth has been attacked by hackers who are demanding a $30 million ransom to unlock its computer system in Australia. Consumer Protection WA has not named the “major international company” but said the cyber attack had forced it to stop trading. The company — which…
Anonymous secret sharing app Whisper left sensitive profile data exposed for years
Nick Statt reports: Whisper, an anonymous secret-sharing mobile app that rose to prominence more than half a decade ago, has been inadvertently exposing sensitive information about its users for years through a public online database, according to a new report from The Washington Post. The app, while far from as popular as it was in the few years…
Brazil: Millions of Records Leaked, Including Biometric Data
Jim Wilson reports: The security research team at Safety Detectives has discovered a significant data leak in addition to other security flaws (such as lack of password protection) relating to fingerprint data on an Antheus log server in Brazil. Our team, led by Anurag Sen, discovered almost 2.3 million data points in total and estimates that…
Israeli spyware company accused of WhatsApp hack: Facebook lied in lawsuit
Tal Shahaf of Reuters reports: A fierce legal battle between Facebook and Israeli cyber security firm NSO ramped up this week with the latter telling a California court that the social media giant lied about providing material related to its lawsuit against the high-tech firm. Facebook is suing NSO for allegedly spying on smartphone users…
266,000 Passwords Stolen in Trident Crypto Fund Data Breach
Sarah Coble reports: A major data breach has occurred at Trident Crypto Fund, resulting in the publication of over a quarter of a million customer usernames and passwords online. According to a report published on March 5, 2020, by Russian media outlet Izvestia, the personal data of 266,000 registered Trident Crypto Fund users was illegally accessed when a…