Catalin Cimpanu reports: The Japanese government approveda law amendment on Friday that will allow government workers to hack into people’s Internet of Things devices as part of an unprecedented survey of insecure IoT devices. The survey will be carried out by employees of the National Institute of Information and Communications Technology (NICT) under the supervision…
LocalBitcoins Has Been Hacked
Mary Kihoro reports: LocalBitcoins, a peer to peer Bitcoin exchange trading platform, has announced that its site has been exposed to a security breach from unknown third parties. However, as of now the team has managed to stop the attack and re-enabled outbound transactions. The platform is currently assessing the number users that have been…
Data leak: Breach too far
NST reports: IT has happened again. This time at Universiti Teknologi Mara (UiTM) where records of just over a million students have been leaked. Is it an inside job? Hard to tell, but UiTM is probing. UiTM sources contacted by the New Straits Times say it may just be put together from multiple sources by…
DailyMotion discloses credential stuffing attack
Catalin Cimpanu reports: Video sharing platform DailyMotion announced on Friday that it was the victim of a credential stuffing attack, ZDNet has learned. […] According to an email sent out to impacted customers, and seen by ZDNet, the credential stuffing started last weekend, on January 19, and appears to have been successful in some cases,…
MY: Over 1 Million UiTM Students and Alumni Personal Details Leaked Online
Vijandren reports: A total of 1,164,540 records, belonging to students who enrolled for various courses at Universiti Teknologi Mara (UiTM) between 2000 and 2018 has been breached and leaked online. The leaked data includes detailed records of students from the UiTM main campus in Shah Alam, as well as it’s 13 autonomous state campuses around the…
CO: Critical Care, Pulmonary & Sleep Associates notifies almost 24,000 patients after hack of employee email accounts
Critical Care, Pulmonary & Sleep Associates in Colorado has notified 23,377 patients of a privacy incident. Their on-site notice offers a useful reminder that while bad actors may be seeking to engage in financial theft or fraud, when files with ePHI are connected to employee email accounts, patients and HHS may wind up needing to be…