The Economic Times reports: Local search service JustDial was found to contain a security flaw, through which a user account could potentially be hacked, but the company managed to rectify it in a day. A cyber security researcher, Ehraz Ahmed, uncovered the vulnerability, which was first reported by moneycontrol.com. Read more at Economic Times.
Category: Business Sector
Escort forums in Italy and the Netherlands hacked by “InstaKilla,” user data put up for sale
Catalin Cimpanu reports: A Bulgarian hacker has breached two online forums dedicated to sex workers, stolen user information, which he’s now selling on a hacking forum.vv The two forums are EscortForumIt.xxx and Hookers.nl — serving sex workers and customers in Italy and the Netherlands, where prostitution is legal. Read more on ZDNet.
Ransomware gang uses iTunes zero-day
Catalin Cimpanu reports: The operators of the BitPaymer ransomware have been spotted using a zero-day in iTunes for Windows as a mechanism to bypass antivirus detection on infected hosts. The attacks and the zero-day were found by cyber-security firm Morphisec on the network of an enterprise in the automotive industry that got hit by BitPaymer…
Dutch Prostitution Site Hookers.nl Hacked — 250,000 Users’ Data Acquired
Thomas Brewster reports: Hackers have obtained the data and personal details of around 250,000 users of the Dutch sex work forum Hookers.nl. The breach was confirmed by a Hookers.nl moderator on Thursday, saying that the forum software supplier, vBulletin, had reported that a vulnerability had allowed an outsider access to site’s database. Read more on…
Hackers breach Volusion and start collecting card details from thousands of sites
Catalin Cimpanu reports: Hackers have breached the infrastructure of Volusion, a provider of cloud-hosted online stores, and are delivering malicious code that records and steals payment card details entered by users in online forms. More than 6,500 stores are impacted, but the number could be even higher. In a press release published last month, Volusion…
Dozens of documents remain sealed in Chrysler hacking class action; Magistrate compliance with discovery requests
The Madison-St. Clair Record reports: Chrysler shared its science with plaintiffs in a half secret class action over the vulnerability of its vehicles to hacking, yet it needed a court order to find out where plaintiffs took their vehicles for maintenance. U.S. Magistrate Judge Reona Daly ruled in Chrysler’s favor on Oct. 2, requiring plaintiffs…