Gareth Corfield reports: Jersey-headquartered insurance company Ardonagh Group has suffered a potential ransomware infection. Informed sources whispered to The Register that the insurance firm had been forced to suspend 200 internal accounts with admin privileges as the “cyber incident” progressed through its IT estate. Read more on The Register.
Category: Business Sector
A security flaw in Grindr let anyone easily hijack user accounts
Zack Whittaker writes: Grindr, one of the world’s largest dating and social networking apps for gay, bi, trans, and queer people, has fixed a security vulnerability that allowed anyone to hijack and take control of any user’s account using only their email address. Wassime Bouimadaghene, a French security researcher, found the vulnerability and reported the issue…
Hackers Breached Telegram, Email Accounts of 20 Israeli Crypto Execs: Report
Rachel McIntosh reports: Hackers targeted approximately 20 Israeli cryptocurrency executives in early September, demanding payments of digital currency after hacking into their phones and stealing their identities. Israeli news source Haaretz reported that the cyberattack, which ultimately did not result in any lost funds, may have been carried out by a state-sponsored team. According to Haaretz, the failed…
Chinese Hackers Steal Personal Data of Half of Taiwan’s Workforce, What Next?
Krishnendu Banerjee reports: Amid escalating tensions between China and Taiwan, Chinese hackers have allegedly stolen data of nearly six million Taiwanese. The largest data breach in the country’s history, Chinese hackers targeted a Taiwanese job bank and sold the data on the dark web as per authorities. […] During the search, authorities found an account…
0x00sec – Security Incident Notification – September 30th 2020
Dear 0x00sec Users, We are writing to you with important information regarding a recent security incident involving your personal information from https://0x00sec.org 12. We became aware of the incident September 7th, 2020, when a security researcher from Thug Crowd privately disclosed to us that our S3 bucket containing database backups was publicly accessible. The S3 bucket was…
Two North American hospitality merchants hacked in May and June
Catalin CImpanu reports: In a security alert published on Thursday, US payments processor Visa revealed that two North American hospitality merchants were hacked and had their system infected with point-of-sale (POS) malware earlier this year. […] Visa published on Thursday a security alert [PDF] with a description of the two security breaches and the malware…