DNA reports: A 17-year-old student in a private school in Chennai’s Tambaram has helped the Indian Railway Catering and Tourism Corporation (IRCTC) fix a bug in its online ticketing platform, which could have exposed millions of passengers and their private information. Ranganathan said that the critical Insecure Object Direct References (IODR) vulnerability on the website…
Category: Business Sector
MN: Crystal Valley Computer Systems Infected By Ransomware Attack
Southern Minnesota News reports: Mankato-based Crystal Valley says a ransomware attack has infected their computer systems. The attack “severely interrupted” the daily operations, according to a company press release. Read more on SMN. The Crystal Valley Cooperative is a farm supply and grain marketing cooperative that serves Southern Minnesota and Northern Iowa, so this may…
Vermont radio stations dealing with fallout from BlackMatter cyberattack
Katharine Huntley reports: Listeners might not know it, but thousands of people in radio stations across the nation are working around the clock to get commercials on the air after they were targeted by Russian hackers. “It started with an email on Sunday night that you really don’t want to get,” Dan Dubonnet said. […]…
Oops? RaidForums data marketplace accidentally exposes private staff page
Ax Sharma reports: RaidForums is an underground place where private databases obtained from data breaches, vulnerability exploits, and credit card information sets are illegally traded by threat actors, or sometimes leaked for free. On RaidForums, the “Staff General” section is typically restricted to internal staff members only, but in an ironic twist of fate, this private section was accidentally left open for viewing by…
Hacker Makes Off With $12 Million in Latest DeFi Breach
Dan Gunderman reports: In the latest security incident involving a decentralized finance protocol, cross-chain project pNetwork announced Sunday it had been hacked for 277 pBTC, a form of wrapped bitcoin, with losses worth over $12 million at current value. In a series of tweets announcing the incident, pNetwork said, “We’re sorry to inform the community that…
Exabytes Falls Victim To Ransomware Attack: Causes Disruptions To Certain Services
Chief Chapree reports: Mainly known for its domain and web hosting services, Exabytes has revealed that it has experienced a ransomware attack. According to a notice that was posted in the Community Forums of its support website at 9:12 PM yesterday, the company first detected the incident at 5:00 AM. As you may expect, the…