Zack Whittaker reports: A privacy bug in Democratic presidential candidate Joe Biden’s official campaign app allowed anyone to look up sensitive voter information on millions of Americans, a security researcher has found. The campaign app, Vote Joe, allows Biden supporters to encourage friends and family members to vote in the upcoming U.S. presidential election by uploading their phone’s…
Category: Miscellaneous
You’re fired: Dutch hackers broke into Trump’s Twitter account in 2016
DutchNews.nl reports: Three Dutch hackers broke into Donald Trump’s Twitter account shortly before he became president in 2016 by guessing his password was ‘yourefired’, magazine Vrij Nederland reported this week. The hackers, named as Edwin, Mattijs and Victor by the magazine, used a leaked list of LinkedIn accounts from 2012 to target Trump, then a…
Russian state hackers suspected in targeting Biden campaign firm – sources
Joel Schectman, Raphael Satter, Christopher Bing, and Joseph Menn report: Microsoft Corp (MSFT.O) recently alerted one of Democratic presidential candidate Joe Biden’s main election campaign advisory firms that it had been targeted by suspected Russian state-backed hackers, according to three people briefed on the matter. The hacking attempts targeted staff at Washington-based SKDKnickerbocker, a campaign strategy and…
Jewish Federation of Greater Washington reports $7.5 million hack
Well, we all expected more breaches because of more people working remotely. Here’s a sad reminder, reported by Emily Davies: The Jewish Federation of Greater Washington reported a hack that drained $7.5 million from its endowment fund and funneled the money into international accounts. CEO Gil Preuss announced the hack to employees in a virtual call…
47 names of clergy abuse victims part of accidental email leak
Christopher White writes: A clergy abuse victim who participated in the Philadelphia Archdiocese’s independent compensation program for survivors is alleging that the confidentiality of nearly 50 other victims was compromised when the program administrator mistakenly sent the individual an email in 2019 with the names of participants from another diocese’s program. Since October 2016, Kenneth…
SANS infosec training org suffers data breach after phishing attack
Lawrence Abrams reports: The SANS cybersecurity training organization has suffered a data breach after one of their employees fell victim to a phishing attack. […] In a notification posted to their site today, SANS states that one of their employees fell for a phishing attack that allowed a threat actor to gain access to their…