Juha Saarinen reports: Retailer Big W‘s website remains in browsing-only mode after a glitch meant shoppers were shown the personal information of other customers. In a notice to customers, Big W said the “technical issue” occured on Thursday November 10 between 1.50pm and 3pm. It meant “the first stage of the checkout process [was] pre-populated with the personal…
Category: Business Sector
MLS seeks, finds, plugs data breach
Richard Mize reports: Home security system sales pitches were coming too soon and too accurately, hitting new homeowners and their real estate agents immediately after closing. Realtors smelled a rat. People were getting hit up for ADT Security systems based on private data, clearly. Plus, the ADT Security reseller was making it sound like the…
ElSurveillance hacks and dumps two more dating sites; warns users about “Russian black hats”
The hacktivist known as ElSurveillance, whose operation is #EscortsOffline, is back with two more data dumps from dating sites. The first target was 24luv.com, where ElSurveillance claims he hacked and dumped 92,937 users’ email addresses and plain-text passwords. In a defacement on the site, ElSurveillance writes, in part: I compromised this website about four months ago and…
A&M Provides Notice of Data Security Incident at at Annie Sez, Afaze, Mandee, Sirens and Urban Planet Stores
Nov. 11 – A & M (2015) LLC (“A&M”) today announced that a recent data security incident may have compromised the security of payment information of some customers who used debit or credit cards at Annie Sez, Afaze, Mandee, Sirens and Urban Planet locations between November 24, 2015 and August 23, 2016. Customers who used their credit or debit card at…
PowerDuke: Widespread Post-Election Spear Phishing Campaigns Targeting Think Tanks and NGOs
Steven Adair writes: In the wake of the 2016 United States Presidential Election, not even six hours after Donald Trump became the nation’s President-Elect, an advanced persistent threat (APT) group launched a series of coordinated and well-planned spear phishing campaigns. Volexity observed five different attack waves with a heavy focus on U.S.-based think tanks and…
DCLeaks was a conspiracy to get Trump elected, but wait until you hear these Russian hackers’ motivation!
Sometimes a story just lands in your lap that is so incredible that you can’t believe it, but it’s such a great story that you can’t just ignore it, either. Sometimes you wind up debunking it, sometimes you wind up confirming it, and sometimes, you take the story as far as you can and still…