Jeremy Kirk reports: An Australian teenager who notified a public transport agency of a serious database flaw is under police investigation. Joshua Rogers, 16, of Melbourne, found a SQL injection flaw in a database owned by Public Transport Victoria (PTV), which runs the state’s transport system. The flaw allowed access to a database containing 600,000…
Category: Non-U.S.
ZA: Hacker reveals e-toll website security flaw
Jan Vermeulen reports that a hacker has reported a vulnerability in the SANRAL website that exposes user information: This is due to a page on the South African National Roads Agency Limited (Sanral) website which can be exploited to expose the PIN of any registered e-toll website user. The page is intended to be used…
Pointer: MMMOOO hacked – 86,369 User Credentials Leaked
Over on CyberWarNews.info, Lee reported: Today a group of hackers going by the name hitlersec have been announcing some breaches and one of the is MMMOOO (http://www.immmooo.com/en/). MMMOOO is a website owned and operated by Shanghai Jibiao Info Tech Co., Ltd, and is a mobile phone application aimed at the Chinese market. Read more on Cyber…
CN: Alipay apologizes for data theft
Back in 2011, I posted several reports of massive hacks or insider data theft involving Chinese sites. One of the reports involved Alipay, which is Alibaba’s online payment system. At the time, Alipay would only confirm that IDs had been involved, but said it was only IDs. Today, I saw this on ECNS.cn: Alipay, the online…
Western Asian callers hack Bangalore IT firm phone lines, possible terror link considered
Naveen Ammembala has a report on DNA of a hack that may or may not have terrorism connections: Unidentified callers from a West Asian country managed to hack the firewall of an international video conferencing equipment of an IT company in the city, and make calls to Afghanistan. Police say that the hacking by the…
Travel insurer Staysure warns 93,389 customers after card data hacked
Bob Howard reports: The travel insurer Staysure has warned customers that some of their sensitive bank card details may have been stolen after its IT security was breached. Some 93,000 people who bought policies prior to May 2012 may be at risk, it said. Staysure said it believed hackers may have stolen the three digit…