Brian Krebs reports: Fiserv, Inc., a major provider of technology services to financial institutions, just fixed a glaring weakness in its Web platform that exposed personal and financial details of countless customers across hundreds of bank Web sites, KrebsOnSecurity has learned. Brookfield, Wisc.-based Fiserv [NASDAQ:FISV] is a Fortune 500 company with 24,000 employees and $5.7…
Category: Business Sector
Leaked data from Chinese hotel chain may affect 130 million customers
Nicole Jao reports: Personal data and booking information from 13 hotels operated by Huazhu Hotels Group (华住酒店集团) has reportedly been leaked in what could be the largest data breach in China in five years, according to Chinese cybersecurity media FreeBuf (in Chinese). This morning, a post on a Chinese dark web forum titled “Huazhu-owned hotels…
Hacked: User Data Leaked From Brazilian Crypto Arbitrage Platform, Funds Reportedly Safe
Omar Faridi reports: Brazilian ‘arbitrage’ firm Atlas has reportedly been hacked and the email addresses belonging to its over 264,000 users have been leaked. The company’s users’ phone numbers and the amount of cryptocurrency they have deposited on the platform have also now been shared publicly by the hacker(s). According to a Youtube video posted…
Spyware Company Leaves ‘Terabytes’ of Selfies, Text Messages, and Location Data Exposed Online
Lorenzo Franceschi-Bicchierai reports: A company that markets cell phone spyware to parents and employers left the data of thousands of its customers—and the information of the people they were monitoring—unprotected online. The data exposed included selfies, text messages, audio recordings, contacts, location, hashed passwords and logins, Facebook messages, among others, according to a security researcher…
Babysitting app suffers ‘temporary data breach’ of 93,000 users
John E. Dunn reports: Babysitting-booking app Sitter “temporarily” exposed the personal data of 93,000 account holders, according to a researcher who recently discovered the trove of data using the Shodan Internet of Things (IoT) search engine. In a LinkedIn post, Bob Diachenko explains how he found the 2GB MongoDB database on August 13, which contained…
T-Mobile experienced a data breach on August 20th
Update: About 2 million customers are reportedly affected. Alex Wagner reports: T-Mobile today confirmed that it was affected by a security breach. T-Mobile says that on August 20th, it discovered a security breach that affected the accounts of some customers. The malicious party did not get access to any financial data, social security numbers, or…