Lawrence Abrams reports: A security researcher has found a method that can be used to easily identify the public IP addresses of misconfigured dark web servers. While some feel that this researcher is attacking Tor or other similar networks, in reality he is exposing the pitfalls of not knowing how to properly configure a hidden service. One…
Category: Of Note
North Korean Spy to Be Charged in Sony Pictures Hacking
David E. Sanger, Katie Benner and Adam Goldman report: The Justice Department plans to charge a North Korean spy in the hacking of Sony Pictures Entertainment in 2014, according to three government officials familiar with the indictment. The attack wiped out 70 percent of Sony Pictures’ computer capability and was done in retaliation for the…
NY Cyber Law Hits 3rd Deadline: Toughest Yet to Come
Craig A. Newman of Patterson Belknap writes: By today, financial institutions are required to meet their next deadline for compliance with New York’s cybersecurity law. The regulation – enacted in March 2017 –includes a series of rolling deadlines that require banks and insurance companies covered by the law to meet varying data security requirements. Today’s…
More than 85% of China’s app users have had their data leaked: survey
Masha Borak reports: A survey has found that 85.2 % of app users in China have experienced data leaks, according to a report by the China Consumer Association. For the vast majority of them (86.5%), the leaks resulted in receiving harassing calls and messages from sales departments and advertisers, while three quarters complained of getting…
Spyware Company That Marketed To Domestic Abusers Gets Hacked
Lorenzo Franceschi-Bicchierai reports: A company that sells spyware to consumers specifically and openly marketing its product to domestic abusers got hacked. The hacker, who only goes by the initials L.M., told Motherboard in February that he gained access to the servers of TheTruthSpy, a company that sells an Android and iOS spy app to consumers,….
Leaked data from Chinese hotel chain may affect 130 million customers
Nicole Jao reports: Personal data and booking information from 13 hotels operated by Huazhu Hotels Group (华住酒店集团) has reportedly been leaked in what could be the largest data breach in China in five years, according to Chinese cybersecurity media FreeBuf (in Chinese). This morning, a post on a Chinese dark web forum titled “Huazhu-owned hotels…