Zack Whittaker reports: Zoom’s troubled year just got worse. Now that a large portion of the world is working from home to ride out the coronavirus pandemic, Zoom’s popularity has rocketed, but also has led to an increased focus on the company’s security practices and privacy promises. Hot on the heels of two security researchers finding a Zoom…
Category: Hack
Marriott data breach exposes personal data of 5.2 million guests
Keumars Afifi-Sabet reports: Marriott has informed 5.2 million guests that their personal details were inappropriately accessed in a possible data breach. Contacts details, loyalty account information, company, gender, birthday, partnerships and affiliations and room preferences were among guests’ details accessed between mid-January and February 2020. Read more on ITPro.
Missouri law firm sued by insurer for not disclosing 2016 hack by thedarkoverlord
For the past few years, this site has covered litigation against Athens Orthopedic Clinic in Georgia related to their hack by thedarkoverlord in 2016. The lawsuit against the clinic, filed by a patient, made it all the way to the Georgia Supreme Court on the issue of whether under Georgia state law, the plaintiff had…
A mysterious hacker group is eavesdropping on corporate email and FTP traffic
Catalin Cimpanu reports: Since at least early December 2019, a mysterious hacker group has been taking over DrayTek enterprise routers to eavesdrop on FTP and email traffic inside corporate networks, Chinese security firm Qihoo 360 said today. In a report published on the blog of its network security division Netlab, Qihoo said its researchers detected two different…
Dark web hosting provider hacked again — 7,600 sites down
Catalin Cimpanu reports: Daniel’s Hosting (DH), the largest free web hosting provider for dark web services, has shut down today after getting hacked for the second time in 16 months, ZDNet has learned. Almost 7,600 dark web portals have been taken offline following the hack, during which an attacker deleted the web hosting portal’s entire database….
Someone’s wiping out elastic searches and leaving a security firm’s name
Security researcher Bob Diachenko reported a disturbing finding yesterday: someone was wiping out public-facing elastic searches and leaving “NightlionSecurity.com” in their place: Looks like malicious actors now using @vinnytroia‘s company name in another wave of Elasticsearch automated attacks in an attempt to compromise him. https://t.co/6msI0aKLfa pic.twitter.com/Y1DQ1iCzBG — Bob Diachenko (@MayhemDayOne) March 25, 2020 By this…