Dani Deahl reports: The security company Imperva has released new details on a Facebook vulnerability that could have exposed user data. The bug allowed websites to obtain private information about Facebook users and their friends through unauthorized access to a company API, playing off a specific behavior in the Chrome browser. The bug was disclosed…
Romanian hacker “Guccifer” extradited to U.S. to finish prison sentence: Reports
Andrew Blake reports: Marcel Lehel Lazar, a prolific computer hacker known as “Guccifer,” has been extradited to the United States to finish serving a prison sentence related to a cybercrime spree credited with exposing Hillary Clinton’s use of a personal email account while secretary of state, outlets in his native Romania reported Monday. Romania’s Alba…
NL: Internet con men ripped off Pathe NL for €19m in business email compromise
Heads rolled in this one, when executives did not spot or prevent business email compromise. As reported by DutchNews.nl: The Dutch operation of the Pathé cinema group was ripped off by internet con men to the tune of over €19m, court documents published on Friday show. The con cost both the chief executive and financial…
Mobile World flounders after serious security breach
Vietnam Investment Review reports: On November 7, a hacker has announced full 16-digit credit card numbers, claiming they belong to Mobile World customers. After sharing a file containing more than 5.4 million email addresses and 31,000 bank card numbers (six digits covered), claiming they belong to clients of Mobile World, an account called Erwincho continued…
City of Bakersfield announces data breach from hacked Click2Gov system
Another Click2Gov breach, this time affecting up to 2400 residents of the City of Bakersfield. The city’s statement, below, doesn’t indicate whether they were ever warned by CentralSquare Technologies, and if so, what they had done in response. DataBreaches.net has filed under freedom of information to try to obtain more records showing what CST had…
NJ: Summit Medical Group notifies patients about missing notebook
Anthony Vecchione reports: Summit Medical Group said Monday it is looking into an incident of a possible security leak of patient data. SMG said it became aware of the potential unauthorized disclosure of patient medical records Sept. 5 when management and privacy office personnel were notified a notebook maintained by a medical assistant in the…