As reported first by DataBreaches.net, Click2Mail was investigating allegations that they had had a breach. They have now responded to this site’s inquiry on October 4th with a copy of the statement they are sending out to all customers today, below. Update: In a follow-up communication, Lee Garvey, President and CEO of Click2Mail, informs this…
Category: Business Sector
Imperva blames data breach on stolen AWS API key
Catalin Cimpanu reports: Cyber-security firm Imperva published today a detailed post-mortem report of a security breach the company disclosed two months ago, in August. The company blamed the security breach on an Amazon Web Services (AWS) API key a hacker stole from an internal system that was left accessible from the internet. Read more on ZDNet.
JustDial fixes bug that allowed hackers access
The Economic Times reports: Local search service JustDial was found to contain a security flaw, through which a user account could potentially be hacked, but the company managed to rectify it in a day. A cyber security researcher, Ehraz Ahmed, uncovered the vulnerability, which was first reported by moneycontrol.com. Read more at Economic Times.
Escort forums in Italy and the Netherlands hacked by “InstaKilla,” user data put up for sale
Catalin Cimpanu reports: A Bulgarian hacker has breached two online forums dedicated to sex workers, stolen user information, which he’s now selling on a hacking forum.vv The two forums are EscortForumIt.xxx and Hookers.nl — serving sex workers and customers in Italy and the Netherlands, where prostitution is legal. Read more on ZDNet.
Ransomware gang uses iTunes zero-day
Catalin Cimpanu reports: The operators of the BitPaymer ransomware have been spotted using a zero-day in iTunes for Windows as a mechanism to bypass antivirus detection on infected hosts. The attacks and the zero-day were found by cyber-security firm Morphisec on the network of an enterprise in the automotive industry that got hit by BitPaymer…
Dutch Prostitution Site Hookers.nl Hacked — 250,000 Users’ Data Acquired
Thomas Brewster reports: Hackers have obtained the data and personal details of around 250,000 users of the Dutch sex work forum Hookers.nl. The breach was confirmed by a Hookers.nl moderator on Thursday, saying that the forum software supplier, vBulletin, had reported that a vulnerability had allowed an outsider access to site’s database. Read more on…