Gareth Corfield reports: Users of software house Foxit’s free and paid-for products, including its popular PhantomPDF editor, may have fallen victim to a data breach – with stolen data including users’ website passwords. Foxit admitted to the breach earlier today, stating that “third parties” had gained access to its My Account user data. Read more…
Category: Business Sector
How sweet it is(n’t): Chocolatier announces breach
Their press release: KANSAS CITY, Mo., Aug. 30, 2019 — Russell Stover Chocolates, LLC (Russell Stover) recently became aware of a data security incident potentially affecting certain data from payment cards used for purchases at Russell Stover retail stores during a limited timeframe. It is important to note that, at this time, there is no…
Imperva discloses security incident impacting cloud firewall users
Catalin Cimpanu reports: Cyber-security and DDoS mitigation firm Imperva disclosed today a security incident that impacts customers of its cloud web application firewall (WAF), formerly known as Incapsula. “On August 20, 2019, we learned from a third party of a data exposure that impacts a subset of customers of our Cloud WAF product who had…
Hostinger Data Breach Affects Almost 14 Million Customers
Ionut Ilascu reports: Hosting provider Hostinger today announced that it reset the login passwords of 14 million of its customers following a recent security breach that enabled unauthorized access to a client database. The incident occurred on August 23 and a third party was able to access usernames, hashed passwords, emails, first names, and IP…
Valve patches recent Steam zero-days, calls turning away researcher ‘a mistake’
Catalin Cimpanu reports: Gaming giant Valve has called turning away a security researcher who reported a vulnerability in the company’s Steam gaming client “a mistake.” A Valve representative told ZDNet in an email today that the company has shipped fixes for the Steam client, updated its bug bounty program rules, and is reviewing the researcher’s…
UK hacker known as “Courvoisier” who attacked Uber and Sainsbury’s hands over £1m in Bitcoin
The Irish News reports: A British hacker who led cyber attacks on massive companies including Uber, Asda and Sainsbury’s has had a Bitcoin stash worth £1 million confiscated. Grant West, 27, who operated on the dark web under the nickname Courvoisier – the name of a popular French cognac – attacked more than 100 companies…