Jamie Court reports: The nonprofit, nonpartisan Consumer Watchdog today released a video showing how a box it built with the help of technologists could hack into the wireless connection of a Tesla and take over the screen with a “This Tesla’s Been Hacked” message. The video can be viewed here: https://youtu.be/RgpmJ6OhPns The group said the demonstration…
The Wash Tub is notifying customers of a year-long payment card breach
The Wash Tub is notifying customers of a year-long payment card breach: San Antonio (November 12, 2020) – The Wash Tub is notifying customers of an incident that has been recently identified and addressed involving a suspected data breach that occurred September 2019 through October 2020. The Wash Tub was recently notified of suspicious activity…
Hackers sponsored by Russia and North Korea are targeting COVID-19 researchers
Dan Goodin reports: Hackers sponsored by the Russian and North Korean governments have been targeting companies directly involved in researching vaccines and treatments for COVID-19, and in some cases, the attacks have succeeded, Microsoft said on Friday. In all, there are seven prominent companies that have been targeted, Microsoft Corporate VP for Customer Security &…
How hackers collected sensitive data from the Land Transportation Office
Earlier this week, I noted a probe of a data leak involving the Land Transportation Office in Manila. There’s more reported today. Art Samaniego reports: The country’s transportation agency is now on a hot seat as thousands of personal information of drivers and vehicle owners were processed and saved by a website pretending to be…
Hosting Provider Exposed 63M Records incl. WP & Magento
I missed this report from Jeremiah Fowler the other day: On October 5th I discovered a non-password protected database that contained a large amount of monitoring and system logs. There were records indicating data backups, monitoring, error logging, and more. Upon further research, the database appeared to belong to the Texas-based cloud application hosting provider,…
Microsoft urges users to stop using phone-based multi-factor authentication
Catalin Cimpanu reports Microsoft is urging users to abandon telephone-based multi-factor authentication (MFA) solutions like one-time codes sent via SMS and voice calls and instead replace them with newer MFA technologies, like app-based authenticators and security keys. The warning comes from Alex Weinert, Director of Identity Security at Microsoft. For the past year, Weinert has been…