Laura Christmas reports from Alabama: Monday morning when employees came to work at a Marshall County recycling center, they found boxes of documents that included people’s personal information in what looked like personal tax documents. Some of the papers had a company name listed: Professional Tax & Accounting, which has three offices in Birmingham, Jasper,…
Category: Business Sector
Here’s What It’s Like to Accidentally Expose the Data of 230M People
Andy Greenberg reports: Steve Hardigree hadn’t even gotten to the office yet, and his day was already a waking nightmare. As he Googled his company’s name that morning last June, Hardigree found a growing list of headlines pointing to the 10-person marketing firm he’d founded three years earlier, Exactis, as the source of a leak…
Round 4: Hacker returns and puts 26Mil user records for sale on the Dark Web
Catalin Cimpanu reports: A hacker who has previously put up for sale over 840 million user records in the past month, has returned with a fourth round of hacked data that he’s selling on a dark web marketplace. This time, the hacker has put up for sale the data of six companies, totaling 26.42 million…
How an unsecured Elasticsearch server exposed customer order information and passwords
James Sander joins those taking GearBest out to the cyberwoodshed over a data leak: Over 1.5 million customer records from online electronics seller GearBest, as well as Zaful, Rosegal, and DressLily, were stored in an unprotected Elasticsearch server, according to a joint report from VPNMentor (archived here) and security researcher Noam Rotem. The brands involved…
Australian man arrested for selling one million passwords from popular streaming services
Alex Hernandez reports: A 21-year old Australian man has been arrested for allegedly selling Hulu, Spotify, and Netflix passwords online. The Australian man operated a website that generated passwords for popular streaming services including the aforementioned trio. It is being reported that the man made AU$300,000 (US$211,000) from his operation. The man was arrested after…
Unsecured Gearbest server exposes millions of shoppers and their orders
Zeljka Zorz reports: Chinese e-commerce giant Gearbest has exposed information and orders of millions of its customers through an unsecured Elasticsearch server, security researcher Noam Rotem and his team have found. According to Rotem, the server was not protected with a password and anyone could access it and search the data. Also, despite assurances from…