Dear 0x00sec Users, We are writing to you with important information regarding a recent security incident involving your personal information from https://0x00sec.org 12. We became aware of the incident September 7th, 2020, when a security researcher from Thug Crowd privately disclosed to us that our S3 bucket containing database backups was publicly accessible. The S3 bucket was…
Category: Business Sector
Two North American hospitality merchants hacked in May and June
Catalin CImpanu reports: In a security alert published on Thursday, US payments processor Visa revealed that two North American hospitality merchants were hacked and had their system infected with point-of-sale (POS) malware earlier this year. […] Visa published on Thursday a security alert [PDF] with a description of the two security breaches and the malware…
Transport Malta hit by cyberattack, recovers after 5 days
Transport Malta was hit by a cyberattack during the night between September 25 and 26. They would only admit to a technical problem and gave no further details at the time, but 5 days later, the system is now back up and running. But they’re still not saying what happened or how. h/t, @Chum1ng0
Northern California casino shut down by external computer attack
Sam Stanton reports: Northern California’s Cache Creek Casino Resort, which has been shut down since Sept. 20 because of what it called a “systems infrastructure failure,” confirmed Wednesday that its computer systems were the target of an outside attack and that the incident is under investigation. “While our investigation is ongoing, we have confirmed the cause was an external…
VOXX International notifies employees and dependents enrolled in their health plan of ransomware attack
The following press release was issued September 28 by VOXX. If you or a family member were employed by them years ago, they may not have your current address to notify you of this incident: Today, VOXX International Corporation (“VOXX”), a leading manufacturer and distributor of automotive, consumer and biometrics technologies, announced that it has…
Yevgeniy Nikulin sentenced to 88 months for hacks of LinkedIn, Dropbox, and Formspring
More than two years after he was extradited from the Czech Republic where he was arrested in 2016 for hacking LinkedIn, Dropbox, and Formspring, Russian national Yevgeniy Nikulin was sentenced today to 88 months by Judge William Alsup in federal court in northern California. Nikulin, also known as “Chinabig01,” “dex.007, ” “valeriy.krutov3, and “itBlackHat,” had…