Jessica Belton reports: Poland’s Personal Data Protection Office (UODO) this week imposed a PLN 2.8 million (€645,000) fine on online retailer Morele.net for “insufficient organisational and technical safeguards”. The data breach affected approximately 2.2 million customers who purchased products through one of the group’s nine websites. Read more on IT Governance.
Category: Hack
Anonymous researcher drops vBulletin 5.x zero-day impacting tens of thousands of sites
Catalin Cimpanu reports: An anonymous security researcher has published details about a zero-day in vBulletin, today’s most popular internet forum software. Because of this individual’s actions, security experts are now concerned that the publication of details about this unpatched vulnerability could trigger a wave of forum hacks across the internet, with hackers taking over forum…
Russian Hacker Pleads Guilty For Involvement In Massive Network Intrusions At U.S. Financial Institutions, Brokerage Firms, A Major News Publication, And Other Companies
There’s a follow-up to the case of the hacker involved in the 2014 JP Morgan hack. From the Department of Justice, today: Geoffrey S. Berman, the United States Attorney for the Southern District of New York, announced today that ANDREI TYURIN, a/k/a “Andrei Tiurin,” pled guilty in Manhattan federal court to computer intrusion, wire fraud,…
Twitter suspends account claiming responsibility for WoW DDoS attack, Blizzard confirms suspect has been arrested
Dom Sacco has an update to reporting of September 8: UPDATE (September 20th): Blizzard has announced that a suspect has been arrested over this incident. It said in a forum post: “Immediately after the Distributed Denial of Service attacks against our game service began, the Blizzard Security Team worked around the clock with local and…
Football Leaks: Suspected hacker charged in Portugal
BBC reports: A man linked to the Football Leaks disclosures which prompted investigations into the Manchester City and Paris St-Germain clubs has been charged with 147 offences in Portugal. Rui Pinto, 30, is accused of crimes relating to unauthorised access to data and attempted extortion. Read more on BBC.
TalkTalk hacker also breached EtherDelta cryptocurrency exchange
Catalin Cimpanu has the scoop on this one: US authorities have indicted two suspects for hacking cryptocurrency exchange EtherDelta in December 2017, changing the site’s DNS settings, and redirecting traffic to a clone where they logged user credentials and then stole customer funds. One of the two suspects is Elliott Gunton, also known as “Glubz,”…