TheDarkOverlord (TDO) has been busy, it seems. In the past month or so, the hackers – who have seemingly managed to continue to evade capture by law enforcement – have revealed a number of hacks never previously disclosed by them. Earlier today, DataBreaches.net reported on TDO’s hack of Caribbean Island Properties. But at the same…
Category: Business Sector
Jared, Kay Jewelers Parent Fixes Data Leak
Brian Krebs reports: In mid-November 2018, KrebsOnSecurity heard from a Jared customer who found something curious after receiving a receipt via email for a pair of earrings he’d just purchased as a surprise gift for his girlfriend. Dallas-based Web designer Brandon Sheehy discovered that slightly modifying the link in the confirmation email he received and…
Caribbean Island Properties “pillaged” by TheDarkOverlord
In recent months, we’ve seen the return of threat actors calling themselves TheDarkOverlord (TDO), although some sources have speculated that arrests announced in May may have damaged the group. As some journalists and others have noted in conversations, certainly this incarnation of TDO does not seem to know of some events or statements they’ve made…
Technic forums breach
Technic forums database breach, as posted tonight on their blog: If you have an account on our forums or wiki, and are using your password somewhere else, change it immediately. You should still be fine, but this is a necessary precaution. Our forums and wiki got compromised by an unknown third-party. On Friday a user…
A popular Q&A website says hackers stole information on 100 million users
Saheli Roy Choudhury reports: Quora, the popular question-and-answer website, said Monday evening that hackers broke into one of its systems and compromised information from approximately 100 million users. CEO Adam D’Angelo said in a blog post the company discovered last week that a malicious third party had gained unauthorized access to one of its systems….
Misconfigured Locksmith Services web servers exposed sensitive information
Darryl Burke reports: On Wed Nov 23rd, we discovered a misconfiguration on the web servers of the company “Locksmith Services” which is a US based national dispatch service for Locksmiths. The misconfiguration on the website dispatchlogin.net exposed the; audio recording of calls, emails, customer contact information, photos of drivers licenses and passports, photos of credit…