PBN reports: Mastodon, a social network based on software for servers of the same name, has been found to have a vulnerability that could have allowed attackers to read individual pieces of information. The problem was caused by inadequate filtering of the data transferred during LDAP authentication. The vulnerability allows attackers to smuggle in an…
Category: Business Sector
Rogers Communications data allegedly sold on a hacker forum
Vilius Petkauskas reports: Rogers’ leak includes data from the company’s active directory, including information on customers, the attackers claim. The company confirmed the leak, saying some of Rogers employees’ “business contact information” was exposed. Attackers posted an ad on a mostly Russian-speaking hacker forum, alleging the database for sale belongs to Rogers Communications, a Canadian…
MSI Confirms Cyberattack, Advises Caution With Firmware
Andrew E. Freedman reports: Gaming hardware manufacturer MSI confirmed today that it was the victim of a cyberattack. In a brief statement on its website, the company said that the attack hit “part of its information systems,” which have since returned to regular operations. The company advises its customers only to get BIOS and firmware updates…
Proskauer Rose Cyber Attack Left Sensitive Client Data Unguarded
Mahira Dayal reports: A data breach at Proskauer Rose exposed client data, including sensitive legal and financial information, the law firm confirmed Friday. “Our tech security team recently learned that an outside vendor that we retained to create an information portal on a third-party cloud-based storage platform had not properly secured it,” Joanne Southern, a…
Tesla workers shared sensitive images recorded by customer cars
Reuters reports: Tesla assures its millions of electric car owners that their privacy “is and will always be enormously important to us.” The cameras it builds into vehicles to assist driving, it notes on its website, are “designed from the ground up to protect your privacy.” But between 2019 and 2022, groups of Tesla employees…
Money Message ransomware gang claims MSI breach, demands $4 million
Bill Toulas reports: Taiwanese PC parts maker MSI (Micro-Star International) has been listed on the extortion portal of a new ransomware gang known as “Money Message,” which claims to have stolen source code from the company’s network. MSI is a global hardware giant that makes motherboards, graphics cards, desktops, laptops, servers, industrial systems, PC peripherals,…