Ian Poh reports: Undeterred by the Government’s warning that it would deal with those who threaten to attack Singapore’s cyber infrastructure, a hacking enthusiast tested his skills on the Prime Minister’s Office (PMO) website. Mohammad Azhar Tahir, 28, was sentenced to two months’ jail on Monday for entering unauthorised computer code into the site on…
Category: Non-U.S.
AliExpress WebSite Vulnerability Exposes Millions of Users’ Private Information (Updated)
The Hacker News reports: A critical, but easily exploitable personal information disclosure vulnerability has been discovered in the widely popular online marketplace AliExpress website that affects its millions of users worldwide.. […] Amitay Dan, an Israeli application security researcher working at Cybermoon.cc, reported the vulnerability to The Hacker News after providing full disclosure of the flaw to the AliExpress…
AU: AFP mistakenly names two people involved in criminal investigation
Paul Farrell reports: The Australian federal police have inadvertently disclosed the identity of two people involved in a criminal investigation, the second accidental publication of material about investigations this year. The identities of the two were disclosed in documents released by the AFP under freedom of information laws. Read more on The Guardian.
Plusnet customers SWAMPED by spam but ISP claims there’s been no compromise
The Register reports that Plusnet customers are reporting spam addressed to tagged email addresses used only for Plusnet billing. The BT-owned ISP, however, is not acknowledging any breach: Plusnet has conducted a thorough investigation into this issue. Our investigations confirm that Plusnet’s Core Systems and Networks, including our subscriber and billing databases, have been verified…
IE: Teachers’ data breached on O2 web portal
Mark Tighe reports: The Office of the Data Protection Commissioner (DPC) has begun an investigation into a data breach affecting more than 1,000 teachers who signed up for a phone scheme offered by O2. Last week a member of the scheme, who wishes to remain anonymous, contacted The Sunday Times to express concern that O2’s web…
Alleged Heartbleed hacker faces more charges in Canada Revenue Agency case
The Toronto Star reports that more charges have been laid against Stephen Arthuro Solis-Reyes who had been charged with using Heartbleed to extract data from the Canada Revenue Agency (CRA). Until now, he had (only) been charged with with one count of unauthorized use of a computer and one count of mischief in relation to data. An expanded RCMP investigation produced…