From the what-will-they-think-of-next department. Researchers at GeminiAdvisory.io have an interesting report out this morning about how criminals use donation sites to see if stolen card numbers are working. As a past victim of stolen card numbers, I am used to seeing fraudsters make small charges on the card just to see if it’s working. But I…
Category: Other
Chinese hackers behind July 2021 SolarWinds zero-day attacks
Catalin Cimpanu reports: In mid-July this year, Texas-based software provider SolarWinds released an emergency security update to patch a zero-day in its Serv-U file transferring technology that was being exploited in the wild. At the time, SolarWinds did not share any details about the attacks and only said that it learned of the bug from…
Data breach at Coalinga State Hospital reveals private information on nearly 1,800 patients
KFSN reports: On Friday, the State Hospital Department announced a privacy breach at Coalinga State Hospital. Employees have improperly provided confidential information about approximately 1,800 patients now and in the past to the US District Court in the Eastern District of California, officials said. The breach occurred on July 21, 2013, October 12, 2016, and…
Dallas police data loss nearly triple initial estimate
The Associated Press reports that the amount of data missing from Dallas’s computer database is almost triple the initial estimate of files lost during a data migration involving Dallas Police files. About 15 terabytes of police data are missing besides the 7.5 terabytes initially thought to be lost, city spokeswoman Janella Newsome said. Read more…
Cream Finance loses $25 million in another security breach
Ibiam Wayas reports: For the second time in six months, popular decentralized lending protocol Cream Finance has suffered another attack due to a “reentrancy bug,” according to blockchain security and data analytics company, PeckShield. The protocol’s development team confirmed the incident on Twitter, noting that AMP tokens and Ether (ETH) were lost. Read more on Cryptopolitan.
La Puente man impersonated Apple customer support to steal 620,000 iCloud photos in plot to find images of nude women
Michael Finnegan reports: A Los Angeles County man broke into thousands of Apple iCloud accounts and collected more than 620,000 private photos and videos in a plot to steal and share images of nude young women, federal authorities say. Hao Kuo Chi, 40, of La Puente, has agreed to plead guilty to four felonies, including…