This is one of those articles that we all need to read and think about. Kate Fazzini reports: The cybersecurity vendor marketplace is growing so crowded that some companies have been resorting to extreme tactics to get security executives on the phone to pitch their products, including lying about security emergencies and threatening to expose…
Here’s What It’s Like to Accidentally Expose the Data of 230M People
Andy Greenberg reports: Steve Hardigree hadn’t even gotten to the office yet, and his day was already a waking nightmare. As he Googled his company’s name that morning last June, Hardigree found a growing list of headlines pointing to the 10-person marketing firm he’d founded three years earlier, Exactis, as the source of a leak…
Round 4: Hacker returns and puts 26Mil user records for sale on the Dark Web
Catalin Cimpanu reports: A hacker who has previously put up for sale over 840 million user records in the past month, has returned with a fourth round of hacked data that he’s selling on a dark web marketplace. This time, the hacker has put up for sale the data of six companies, totaling 26.42 million…
How Israel’s Iran Hacking Scandal Could Ensure Netanyahu’s Reelection
Anshel Pfeffer reports: From the moment Channel 12 political analyst Amit Segal broke the story Thursday night that the Shin Bet security service had recently informed Kahol Lavan leader and election front-runner Benny Gantz that his personal smartphone had been hacked, it was clear this could be a moment that will define this election campaign….
How an unsecured Elasticsearch server exposed customer order information and passwords
James Sander joins those taking GearBest out to the cyberwoodshed over a data leak: Over 1.5 million customer records from online electronics seller GearBest, as well as Zaful, Rosegal, and DressLily, were stored in an unprotected Elasticsearch server, according to a joint report from VPNMentor (archived here) and security researcher Noam Rotem. The brands involved…
Dutch hacker who DDoSed the BBC and Yahoo News gets no jail time
Catalin Cimpanu reports: A Dutch hacker who launched DDoS attacks against high-profile sites like the BBC and Yahoo News, and also attempted to extort many other companies, received no jail time for his actions. Speaking in a court in the Hague, the Netherlands earlier this month, a 20-year-old man showed remorse in court, admitted to…