Joseph Cox reports: Elsevier, the company behind scientific journals such as The Lancet, left a server open to the public internet, exposing user email addresses and passwords. The impacted users include people from universities and educational institutions from across the world. It’s not entirely clear how long the server was exposed or how many accounts…
Category: Business Sector
Boxes of documents including possible personal tax information showed up at a Marshall Co. recycling center, investigation underway
Laura Christmas reports from Alabama: Monday morning when employees came to work at a Marshall County recycling center, they found boxes of documents that included people’s personal information in what looked like personal tax documents. Some of the papers had a company name listed: Professional Tax & Accounting, which has three offices in Birmingham, Jasper,…
Here’s What It’s Like to Accidentally Expose the Data of 230M People
Andy Greenberg reports: Steve Hardigree hadn’t even gotten to the office yet, and his day was already a waking nightmare. As he Googled his company’s name that morning last June, Hardigree found a growing list of headlines pointing to the 10-person marketing firm he’d founded three years earlier, Exactis, as the source of a leak…
Round 4: Hacker returns and puts 26Mil user records for sale on the Dark Web
Catalin Cimpanu reports: A hacker who has previously put up for sale over 840 million user records in the past month, has returned with a fourth round of hacked data that he’s selling on a dark web marketplace. This time, the hacker has put up for sale the data of six companies, totaling 26.42 million…
How an unsecured Elasticsearch server exposed customer order information and passwords
James Sander joins those taking GearBest out to the cyberwoodshed over a data leak: Over 1.5 million customer records from online electronics seller GearBest, as well as Zaful, Rosegal, and DressLily, were stored in an unprotected Elasticsearch server, according to a joint report from VPNMentor (archived here) and security researcher Noam Rotem. The brands involved…
Australian man arrested for selling one million passwords from popular streaming services
Alex Hernandez reports: A 21-year old Australian man has been arrested for allegedly selling Hulu, Spotify, and Netflix passwords online. The Australian man operated a website that generated passwords for popular streaming services including the aforementioned trio. It is being reported that the man made AU$300,000 (US$211,000) from his operation. The man was arrested after…