32 edu sites all vuln to the same sql injection vuln….. this is going to be fun — abdilo (@abdilo_) February 2, 2015 and .@jessysaurusrex@g33kspeed@sambowne to put your mind at ease here is the amount in all the dbs together from the 0day sqli: 9,468,248 — abdilo (@abdilo_) February 2, 2015 If/when he posts a…
Category: Hack
VT: Security breach at local dry cleaners
Rachel Karcz reports Fabricare has been hacked and customer credit card data was stolen. View the news segment on WPTZ. A copy of Fabricare’s notification to customers was uploaded today to the Vermont Attorney General’s site here (pdf). The short version: If you used a credit card at any one of our locations between April 1st 2014 and…
Update: Russian dating website Topface pays off ‘Mastermind’ hacker following email breach, and will work with him going forward
David Gilbert reports an update to the hack of Russian dating web site Topface. As noted previously on this blog, the data had been put up for sale. Now Gilbert reports: Russian dating site Topface has confirmed it has paid off a hacker who revealed a flaw in its security systems, through which he stole 20…
Rex Mundi dumps more data after another entity doesn’t pay extortion demands
Rex Mundi has hacked and dumped data from Temporis, a French employment/recruitment agency. As they have done in the past, the hackers issued a statement and announced the data dump on Twitter, where they currently post as @rexmundi15: Last week, we hacked the servers of Temporis, allegedly France’s largest network of franchised temp work agencies (www.temporis-franchise.fr). From their…
Hacker Steals 20 Million Passwords From Unidentified Dating Site (Updated to identify site)
Peter Burrows reports: User names and passwords of 20 million visitors to an unidentified dating site have been hacked and offered for sale on a website, according to a posting by the thief on an online forum used by cybercriminals. […] Fifty percent of the credentials were for people based in Russia, and 40 percent…
Game over? Sony FINALLY accepts compensation claims from MEELLIONS of PSN hack victims
Kelly Fiveash reports: Millions of PSN gamers, who were hit by a massive data breach on Sony’s network back in 2011, are finally being offered the opportunity to claim compensation from the company. Stateside victims of the hack attack – PSN, Qriocity and Sony Online Entertainment subscribers who held an account before 15 May 2011…