Asha McLean reports: Yahoo has said that an unauthorised third party accessed the company’s proprietary code to learn how to forge certain cookies, which it said resulted in an intruder accessing approximately 32 million user accounts without a password. “The outside forensic experts have identified approximately 32 million user accounts for which they believe forged…
Category: Hack
Website of Korea retail giant Lotte hacked in China
Allen Cone reports: The Lotte Group said Wednesday its website in China was hacked, one day after South Korea’s retail giant signed a deal to sell land for a U.S. missile defense system in South Korea. The website, www.lotte.cn, was inaccessible since Tuesday afternoon because of a virus planted by hackers, a Lotte official said, citing an analysis of…
Spiral Toys sends something to the California Attorney General, but what is it?
This just gets stranger and stranger in terms of how Spiral Toys is responding to the CloudPets leak and hack reported by Troy Hunt. The following is a Spiral Toy notification, sent to the California Attorney General’s Office today, below. All typos are as in the original. Why they sent this thing to the California Attorney General’s…
SG: Personal data of national servicemen and Mindef staff stolen in breach
AsiaOne reports: The Ministry of Defence (Mindef) said on Tuesday (Feb 28) that the personal information of some National Servicemen (NSFs) and ministry employees were stolen after a “targeted and carefully planned” attack on one of its computer systems. […] Mindef said that it detected a breach in its I-net system, which provides Internet access…
Data from connected CloudPets teddy bears leaked due to misconfigured database; 820,000 kids’ files exposed
Troy Hunt reports that a misconfigured MongoDB installation resulted in audio files of children’s and parents’ conversations recorded by CloudPets being exposed in a Shodan search. And as we’ve seen many other times, the exposed files were deleted by an attacker, and a purported “ransom” note left in place of the database – a ransom note that was…
Hacker Group Defaces Hundreds of Websites After Hacking UK Hosting Firm
Catalin Cimpanu reports: A hacking crew that goes by the name of National Hackers Agency (NHA) has defaced 605 websites in one go after they managed to get access to a server from UK hosting firm DomainMonster. The attacks, brought to Bleeping Computer’s attention by a member of another hacking crew, took place on Tuesday,…