Tom Hays And Jake Pearson report: A prolific foreign hacker behind cyberattacks that netted an estimated $55 million is facing sentencing by a U.S. judge in a conviction considered an unusual win for law enforcement officials who have identified hundreds of others like him but failed to put them in handcuffs. Ercan Findikoglu, a Turkish…
Category: Hack
Clusters f**ked: Insecure Hadoop file systems wiped by miscreants
Thomas Claburn reports: Administrators of Hadoop Distributed File System (HDFS) clusters have evidently not heeded warnings that surfaced last month about securing software with insecure default settings. Attacks on Hadoop clusters have wiped the data of at least 165 installations, according to GDI Foundation security researchers Victor Gevers, Niall Merrigan, and Matt Bromiley. The trio report that…
Device on computers used to steal ID of University of Iowa students, staff
KCRG reports: The University of Iowa is investigating devices left on campus computers that it believes compromised the personal information for 250 students and staff. Officials with the University of Iowa tell KCRG-TV9 News the breach may be linked to attempts at cheating. “The University of Iowa is investigating a handful of potential cases of…
Mag publisher Future stored your FileSilo passwords in plaintext. Then hackers hit
Shaun Nichols reports: UK magazine publisher Future’s FileSilo website has been raided by hackers, who have made off with, among other information, unencrypted user account passwords. FileSilo.co.uk is a website Future’s mag subscribers can log into to download materials, such as Photoshop templates and graphics, for tutorials published in its print titles. Future is responsible…
15,000 data files of Taiwanese nationals possibly hacked: Govt
Joseph Yeh reports: They claimed that no nationals had yet reported that they were victimised due to the hack. Speaking at an emergency press event, Winston Chung, deputy head of the Ministry of Foreign Affair’s Bureau of Consular Affairs (BOCA), apologised to the public at an emergency press conference, saying that the possible leak was…
Good guy Logic Supply resolves breach in days, unlike some companies
John Leyden reports: US-based industrial computer supplier Logic Supply has reset user passwords following a suspected security breach. Unauthorised access through the firm’s website on 6 February may have exposed customer/company names, usernames and passwords, and order information. Payment card details were not exposed, Logic Supply reassured customers in a breach notification email (extract below) forwarded to El…