Hackers claim to have successfully attacked a multinational conglomerate that is described as having the largest market capitalization on Bangladesh’s stock market. Background on BEXIMCO The Bangladesh Export Import Company Limited (“BEXIMCO”) was founded in the 1970s and has approximately 70,000 employees worldwide. It has operations and investments across a wide range of industries including…
Category: Business Sector
Now-defunct X-Rated Social Media App Exposes Users in Massive Data Breach
vpnMentor reports: vpnMentor’s research team, led by cybersecurity analyst Noam Rotem, recently uncovered a data breach originating from the Fleek social media app. While it appears Fleek ceased operating in 2019, it failed to secure a huge amount of sensitive data collected from users since it launched in 2016. Fleek was marketed as an ‘x-rated’ alternative to Snapchat’s “Campus Stories”, with…
UK: Wentworth Golf Club members informed of hack
Golf Punk reports: The exclusive Wentworth Club in Surrey home to the European Tour has suffered a data breach with membership data stolen. The club’ membership, which reads like a whos who of the rich and famous, has been informed by the club and asked to remain vigilant. The entire membership of over 4,000 members…
FIN11 e-crime group shifted to CL0P ransomware and big game hunting
Derek B. Johnson reports: The financially motivated FIN11, which increasingly incorporated CL0P ransomware into their operations in 2020, appeared to rely on low-effort volume techniques like spamming malware for initial entry, but put a substantial amount of effort into each follow-up compromise. “Several of their recent ransom notes explicitly name data stolen from workstations that…
Cn: 30 Firms Reprimanded Over Data Privacy Violations in Guangdong
Regulation Asia reports: The Guangdong Communications Administration ordered 30 firms including banks and securities firms to fix the breaches and revamp their mobile phone apps. China’s GDCA (Guangdong Communications Administration) has reprimanded 30 banks, financial services and fintech firms for unauthorised data access and collection through their mobile phone apps, the SCMP reports. The GDCA alleges that…
Cybercriminals are Bypassing Multi-factor Authentication to Access Organisation’s Cloud Services
Graham Cluley writes: The US Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning to companies to better protect their cloud-based accounts after several recent successful attacks. According to an advisory published by CISA, an increasing number of attacks have succeeded as more employees have begun to work remotely with a variety…