Gareth Corfield had the exclusive on this one: Tesco has shuttered its parking validation web app after The Register uncovered tens of millions of unsecured ANPR images sitting in a Microsoft Azure blob. The images consisted of photos of cars taken as they entered and left 19 Tesco car parks spread across Britain. Visible and…
Twitter suspends account claiming responsibility for WoW DDoS attack, Blizzard confirms suspect has been arrested
Dom Sacco has an update to reporting of September 8: UPDATE (September 20th): Blizzard has announced that a suspect has been arrested over this incident. It said in a forum post: “Immediately after the Distributed Denial of Service attacks against our game service began, the Blizzard Security Team worked around the clock with local and…
New evasive spear phishing attacks bypass email security measures
Katie Donegan reports: Attackers are playing the long game. Their newest phishing adaption is a product of monthslong intelligence gathering and social engineering — and it’s already being put into action. Dubbed evasive spear phishing, this new category of email security threat was discovered by investigating more than 25 million email attachments. Detailed in a…
Football Leaks: Suspected hacker charged in Portugal
BBC reports: A man linked to the Football Leaks disclosures which prompted investigations into the Manchester City and Paris St-Germain clubs has been charged with 147 offences in Portugal. Rui Pinto, 30, is accused of crimes relating to unauthorised access to data and attempted extortion. Read more on BBC.
Ca: Stratford paid more than $75,000 in Bitcoin following cyber attack
Galen Simmons reports: More than five months after the City of Stratford announced it had been the target of a ransomware cyber attack on April 14, officials announced Thursday that the city paid more than $75,000 in Bitcoins as ransom to the attacker. Read more on The Beacon Herald.
TalkTalk hacker also breached EtherDelta cryptocurrency exchange
Catalin Cimpanu has the scoop on this one: US authorities have indicted two suspects for hacking cryptocurrency exchange EtherDelta in December 2017, changing the site’s DNS settings, and redirecting traffic to a clone where they logged user credentials and then stole customer funds. One of the two suspects is Elliott Gunton, also known as “Glubz,”…