Yet another security incident linked to failure to change default passwords. CJAD in Canada reports that the Quebec Liberals’ failure to change the default password on their videoconferencing system allowed anyone to gain access to strategy meetings. The user who found the flaw showed off the unlimited access to the Journal de Montreal. Published screenshots show archived videos…
Category: Miscellaneous
GitHub Security Update: Reused password attack
Posted June 16, and yet another reminder why you shouldn’t re-use passwords across sites. I know my readers don’t really need any such reminders, but do talk to your kids, parents, grandparents, friends…. What happened? On Tuesday evening PST, we became aware of unauthorized attempts to access a large number of GitHub.com accounts. This appears to…
DNC hacker slams CrowdStrike, publishes opposition memo on Donald Trump
Steve Ragan reports: A hacker claiming responsibility for the DNC hack that made headlines earlier this week has slammed the security company responsible for the incident response, and leaked several documents compromised during the incident – including a 235-page opposition memo on Donald Trump. On Tuesday, the Washington Post reported that hackers – believed to be Russian…
Russian government hackers penetrated DNC, stole opposition research on Trump
Ellen Nakashima reports: Russian government hackers penetrated the computer network of the Democratic National Committee and gained access to the entire database of opposition research on GOP presidential candidate Donald Trump, according to committee officials and security experts who responded to the breach. Read more on Washington Post.
National Network of Abortion Funds reports hack
I suppose some would consider this hacktivism… The National Network of Abortion Funds reports that its Bowl-A-Thon site was attacked on or about April 7. Fake comments were posted, fake donations were submitted, and fake donation activity threatened to disrupt the functionality of the site. Some registered users received offensive emails. Forensic investigation determined that as part of…
RU: Opposition PARNAS party cancels primaries over massive leak of voters’ personal data
Oh great – another voter database leak. RT reports: The Russian Party of People’s Freedom, PARNAS, has had to suspend its internet primaries after a file with personal details of all participants was placed on the party’s website. Top party officials blame unidentified hackers for the privacy breach. PARNAS was holding primaries in order to…