Shivali Best reports: A mum in West Yorkshire says she was shocked to discover any fingerprint could unlock her Samsung smartphone after she’d fitted a £2.70 screen protector . Lisa Neilson, 34, from Castleford, bought the cover from eBay in the hopes of protecting her Galaxy S10 smartphone. However, once she’d set up her right and left thumb prints to unlock the smartphone,…
Category: Business Sector
Click2Mail issues statement to customers, acknowledges hack (updated)
As reported first by DataBreaches.net, Click2Mail was investigating allegations that they had had a breach. They have now responded to this site’s inquiry on October 4th with a copy of the statement they are sending out to all customers today, below. Update: In a follow-up communication, Lee Garvey, President and CEO of Click2Mail, informs this…
Imperva blames data breach on stolen AWS API key
Catalin Cimpanu reports: Cyber-security firm Imperva published today a detailed post-mortem report of a security breach the company disclosed two months ago, in August. The company blamed the security breach on an Amazon Web Services (AWS) API key a hacker stole from an internal system that was left accessible from the internet. Read more on ZDNet.
JustDial fixes bug that allowed hackers access
The Economic Times reports: Local search service JustDial was found to contain a security flaw, through which a user account could potentially be hacked, but the company managed to rectify it in a day. A cyber security researcher, Ehraz Ahmed, uncovered the vulnerability, which was first reported by moneycontrol.com. Read more at Economic Times.
Escort forums in Italy and the Netherlands hacked by “InstaKilla,” user data put up for sale
Catalin Cimpanu reports: A Bulgarian hacker has breached two online forums dedicated to sex workers, stolen user information, which he’s now selling on a hacking forum.vv The two forums are EscortForumIt.xxx and Hookers.nl — serving sex workers and customers in Italy and the Netherlands, where prostitution is legal. Read more on ZDNet.
Ransomware gang uses iTunes zero-day
Catalin Cimpanu reports: The operators of the BitPaymer ransomware have been spotted using a zero-day in iTunes for Windows as a mechanism to bypass antivirus detection on infected hosts. The attacks and the zero-day were found by cyber-security firm Morphisec on the network of an enterprise in the automotive industry that got hit by BitPaymer…