Emily Pennink reports: A teenager rejected from a college computer course became a “ruthless” online criminal who took part in the huge TalkTalk hack and blackmailed the company’s former chief executive. Disgruntled student Daniel Kelley, from Llanelli, turned to “black hat” hacking when he failed to get the necessary GCSE grades to get into a…
Category: Business Sector
Job recruitment site Ladders exposed 13 million user profiles
Zack Whittaker reports: Ladders, one of the most popular job recruitment sites in the U.S. specializing in high-end jobs, has exposed more than 13.7 million user records, following a security lapse. The New York-based company left an Amazon -hosted Elasticsearch database exposed without a password, allowing anyone to access the data. Sanyam Jain, a security…
Hackers Snatch and Try Unsuccessfully to Ransom Data from IT Service Provider; CityComp’s Big Clients Impacted
Joseph Cox reports: Hackers have broken into an internet infrastructure firm that provides services to dozens of the world’s largest and most valuable companies, including Oracle, Volkswagen, Airbus, and many more as part of an extortion attempt, Motherboard has learned. The attackers have also released data from all of those companies, according to a website…
Eddie Bauer Agrees to $10M Data Breach Class Action Settlement
Emily Sortor writes: Eddie Bauer and Veridian Credit Union have reached a $9.8 million settlement, ending claims that Eddie Bauer’s lack of adequate security led to more than 1 million Veridian customer accounts being exposed to a data breach that occurred in January 2016. The proposed settlement deal was filed on Friday in Washington federal…
Employee behind DJI data leak on Github sentenced to prison and fined
Jill Shen reports: A former employee of Chinese drone maker DJI was sentenced to six months in prison and fined RMB 200,000 [almost $30,000.00 USD] for unauthorized disclosure of the company’s data to code-sharing platform Github, according to the prosecutor involved in the case. The office of the People’s Procuratorate of Shenzhen posted on messaging app WeChat…
Magecart hackers force turnover, steal data from Atlanta Hawks’ online shop
Bradley Barth reports: Cybercriminals using Magecart card-skimming code attacked the online store of the NBA’s Atlanta Hawks, stealing customers names, addresses and payment card numbers. Read more on SC Magazine.