BEC is still a thing. When was the last time you trained your employees on that? Graham Cluley reports: Nikkei, one of the largest media companies in Japan, with an empire spanning broadcasting, digital media, magazines, and newspapers such as the Financial Times, says that its US subsidiary, Nikkei America, has been scammed out of…
Category: Business Sector
A network of ‘camgirl’ sites exposed millions of users and sex workers
Zack Whittaker reports (note that domain names in his article are not clickable links, to prevent accidentally accessing sites): A number of popular “camgirl” sites have exposed millions of sex workers and users after the company running the sites left the back-end database unprotected. The sites, run by Barcelona-based VTS Media, include amateur.tv, webcampornoxxx.net, and placercams.com. Most of…
Vedantu Confirms Hack That Compromised Data Of 687K Users
Shanthi S reports on another big breach out of India. This one involves an EdTech firm that provides online tutorials. Bengaluru-based edtech startup Vedantu has confirmed that it faced a data breach in the last week of September. Data of 687K Vedantu customers were put at risk as the data breach allegedly exposed customer details…
Marriott notifies associates of breach at unnamed vendor
In a year that has seen a number of reports that suggest how costly a past data breach may be for Marriott in Canada as well as the U.K. and U.S., Marriott is disclosing yet another breach. On October 30, Marriott International notified the California Attorney General’s Office of a breach at an unnamed vendor…
NordVPN users’ passwords exposed in mass credential-stuffing attacks
Dan Goodin reports: As many as 2,000 users of NordVPN, the virtual private network service that recently disclosed a server hack that leaked crypto keys, have fallen victim to credential-stuffing attacks that allow unauthorized access to their accounts. In recent weeks, credentials for NordVPN users have circulated on Pastebin and other online forums. They contain the…
Tech Companies Seek India Govt’s Help For Solving Aadhaar-PF linking Issue of Employees
Aman Rawat reports that a breach I didn’t even know about last year has raised concerns about what tech companies are willing to do in terms of linking their employees’ provident fund (PF) account numbers to their Aadhaar identification number. PF accounts are compulsory, government-managed retirement savings accounts. So if the government requires employees’ Aadhaar…