Whitney Leggett reports: A Winchester man charged in Singapore with leaking the confidential information of more than 14,000 HIV patients is facing new federal charges in Kentucky. Mikhy Farrera-Brochez, 34, was arrested in Clark County December and charged with third-degree criminal trespassing for allegedly refusing to leave his mother’s property. According to court documents, it…
Prosecutors recommend prison sentence in ‘celebgate’ hacking case
AP reports: Federal prosecutors have recommended a sentence of nearly three years in prison for a former Virginia high school teacher convicted of hacking into private digital accounts of celebrities and others. Christopher Brannan pleaded guilty in October to aggravated identity theft and unauthorized access to a protected computer. He was the fifth person charged…
Delhi Citizens Data Leak
Bob Diachenko writes: On Feb 19, 2019, I have discovered a MongoDB that required no password. The database was located in an India region which (along with other data) also contained highly sensitive information collected on 458,388 individuals located in Delhi. A 4.1GB-sized database had been indexed by Shodan and was left unattended for public…
Grassroots List of Cybersecurity Indictments of State-Sponsored Hackers
Seen at Meritalk: Katie Nickels, a threat intelligence expert for MITRE, released a grassroots compiled list of recent cybersecurity indictments of state-sponsored hackers earlier this week. The list, which is compiled in a Google Doc, includes 30 indictments at the current moment, spanning from June 2011 to Feb. 2019. “When I tweeted that I wanted…
Tax Returns Exposed in TurboTax Credential Stuffing Attacks
Sergiu Gatlan reports: Financial software company Intuit discovered that tax return info was accessed by an unauthorized party after an undisclosed number of TurboTax tax preparation software accounts were breached in a credential stuffing attack. A credential stuffing attack is when attackers compile username and passwords that were leaked from previous security breaches and use those credentials to try and…
Audacious Russian Hacker Who Stole From Victims Using NeverQuest Pleads Guilty
LawFuel reports: Geoffrey S. Berman, the United States Attorney for the Southern District of New York, and William F. Sweeney Jr., Assistant Director-in-Charge of the New York Office of the Federal Bureau of Investigation (“FBI”), announced that STANISLAV VITALIYEVICH LISOV, a/k/a “Black,” a/k/a “Blackf” (“LISOV”), pled guilty today to conspiring to deploy and use a…