Lorenzo Franceschi-Bicchierai reports: A company that sells spyware to consumers specifically and openly marketing its product to domestic abusers got hacked. The hacker, who only goes by the initials L.M., told Motherboard in February that he gained access to the servers of TheTruthSpy, a company that sells an Android and iOS spy app to consumers,….
Category: Business Sector
Fiserv Flaw Exposed Customer Data at Hundreds of Banks
Brian Krebs reports: Fiserv, Inc., a major provider of technology services to financial institutions, just fixed a glaring weakness in its Web platform that exposed personal and financial details of countless customers across hundreds of bank Web sites, KrebsOnSecurity has learned. Brookfield, Wisc.-based Fiserv [NASDAQ:FISV] is a Fortune 500 company with 24,000 employees and $5.7…
Leaked data from Chinese hotel chain may affect 130 million customers
Nicole Jao reports: Personal data and booking information from 13 hotels operated by Huazhu Hotels Group (华住酒店集团) has reportedly been leaked in what could be the largest data breach in China in five years, according to Chinese cybersecurity media FreeBuf (in Chinese). This morning, a post on a Chinese dark web forum titled “Huazhu-owned hotels…
Hacked: User Data Leaked From Brazilian Crypto Arbitrage Platform, Funds Reportedly Safe
Omar Faridi reports: Brazilian ‘arbitrage’ firm Atlas has reportedly been hacked and the email addresses belonging to its over 264,000 users have been leaked. The company’s users’ phone numbers and the amount of cryptocurrency they have deposited on the platform have also now been shared publicly by the hacker(s). According to a Youtube video posted…
Spyware Company Leaves ‘Terabytes’ of Selfies, Text Messages, and Location Data Exposed Online
Lorenzo Franceschi-Bicchierai reports: A company that markets cell phone spyware to parents and employers left the data of thousands of its customers—and the information of the people they were monitoring—unprotected online. The data exposed included selfies, text messages, audio recordings, contacts, location, hashed passwords and logins, Facebook messages, among others, according to a security researcher…
Babysitting app suffers ‘temporary data breach’ of 93,000 users
John E. Dunn reports: Babysitting-booking app Sitter “temporarily” exposed the personal data of 93,000 account holders, according to a researcher who recently discovered the trove of data using the Shodan Internet of Things (IoT) search engine. In a LinkedIn post, Bob Diachenko explains how he found the 2GB MongoDB database on August 13, which contained…