Thomas Fox-Brewster reports: There’s been growing interest in car hacking in recent years, inspired by researchers showing off exploits in real vehicles, tinkering with Teslas, and uncovering glaring vulnerabilities in third party kit. But criminal hackers could vex drivers in other ways, such as compromising internet-connected, easily hackable parking management systems, according to Spanish researcher Jose Guasch. At the Hack…
Category: Business Sector
Expo 2015 – Anonymous Italy claims to have stolen 1TB data from Best Union
Pierluigi Paganini reports: Anonymous Italy continues to target the Expo 2015 Universal Exposition being hosted in Milan with a series of attacks under the Operation Italy (#OpItaly). The collective of hackers it targeting systems of the organization and the companies that are working for the event. The last victim in order of time is the Best Union,…
Where Does Sony Settlement Leave CGL Insurance for Data Breaches?
What does your CGL policy mean by “publication in any manner?” Jana Landon reports: It was reported recently that the parties in the closely watched data breach case of Zurich American Insurance v. Sony Corp. of America (N.Y. Sup. Ct. Feb. 21, 2014) settled while Sony’s appeal of an unfavorable trial court opinion was pending. That…
FBI Cyber Notification: FBI, TSA Analyzing Claims of Intrusion Vectors into Onboard Avionics
In case you didn’t see this last month, it’s worth noting in light of current news stories about Chris Roberts’ research and claims. Public Intelligence writes: The following private industry notification was published online by RenderMan of RenderLab in late April. The notification concerns claims made by security researcher Chris Roberts about vulnerabilities in “commercial aircraft’s onboard avionics and wireless networks…
Starbucks blaming passwords, victims doesn’t fix the problem; burning questions about attack remain
As I pointed out in reporting on Starbuck’s response to Bob Sullivan’s disclosure of a breach involving the mobile app accounts, not everyone would find their explanation and response satisfactory. Today, Bob Sullivan fired back: Since I broke news of the Starbucks mobile pay / gift card /credit card attack last Monday, there has been some confusion…
Meru Cabs was exposing customer data
I had missed this one, but DataBreachToday has a write-up about the exposure of Meru Cabs customer data due to logs from its mobile app not being secured. The exposed data in the logs “included customers’ personally identifiable information, including mobile numbers, email addresses, pickup and drop locations, masked credit-card numbers, payment notification logs, Meru booking…