Manoj Kumar Thambulingam reports: NLCIndia.com—one of the Indian Government Navarathna award winning public sector enterprise, providing several services through web interface — has reportedly been hacked , exposing the site’s user credentials.NLC (Neyveli Lignite Corporation) is an Indian Goverment owned Lignite mining and power generating company . And it was one of the elite company of India. It…
Category: Non-U.S.
Technical report on RUAG breach: malware was from Turla family
More on the defense contractor RUAG breach previously noted on this site. Melani has issued a technical report on the breach that may be of interest to some. From the summary: The attackers have been using malware from the Turla family, which has been in the wild for several years. The variant observed in the…
KE: Safaricom calls for police investigation into data leak
Telecompaper reports: Kenyan operator Safaricom wants the police to investigate how confidential financial documents belonging to the firm were leaked. CEO Bob Collymore said the leaked report was in its initial stages, noting that no individuals or organisations benefited inappropriately from the company. After allegations arose of underhand dealings in Safaricom, Collymore commissioned KPMG to…
Slovenian student convicted after finding encryption flaws in government network
Paul Ducklin reports: A student from the University of Maribor in Slovenia has ended up with a prison sentence after finding cryptographic flaws in the country’s implementation of its secure communications system, known as TETRA. TETRA is short for Terrestrial Trunked Radio, a radio communications protocol that is widely used around the world, notably by law enforcement and…
1.4 Billion Yen Stolen From 1,400 Japanese ATMs
Hamodia reports: Japanese police are investigating a case of international credit-card fraud in which about 1.44 billion yen, or more than $13 million, was illegally withdrawn with forged credit cards from 1,400 automated teller machines in convenience stores around Japan, according to investigative sources. Police suspect that a group of more than 100 people extracted…
China site reveals over 100 Japanese entities at risk of cyber-attacks
Masako Wakae reports: Hackers have disclosed the names of more than 100 Japanese public organizations and companies that have website vulnerabilities (see below) since February this year. WooYun, a website operated by Chinese cybersecurity experts and others, disclosed the names of the Japanese companies on its website. […] So far WooYun has carried reports about the…