Yet another security incident linked to failure to change default passwords. CJAD in Canada reports that the Quebec Liberals’ failure to change the default password on their videoconferencing system allowed anyone to gain access to strategy meetings. The user who found the flaw showed off the unlimited access to the Journal de Montreal. Published screenshots show archived videos…
Bank of Montreal ATM “hacked” with default password
CORRECTION: This story was originally reported in 2014. Not sure why CJAD reported it as recent news, but thanks to Catalin Cimpanu for letting me know. Original post: So… in a story about another breach, which was also linked to using a default password, CJAD in Canada mentioned a breach that occurred last week: Two 14-year-old high school…
NJ financial advisor admits identity theft that cost clients $500k
Sergio Bichao reports: A Middletown financial advisor accused of bilking nearly 20 clients out of a half million dollars has pleaded guilty to the charges against him. Christopher D. Biello [aka Christopher Sherman], 43, is facing as many as 14 years in prison when he is sentenced Nov. 4, and may be ordered to pay…
GoToMyPC accounts hacked, all customer passwords reset
Graham Cluley reports: Experiencing a problem logging into GoToMyPC? There’s a reason for that. Your password has been reset by Citrix, the company which runs GoToMyPC.com, after hackers reportedly attacked the service. Read more on GrahamCluley.com. I wonder what the “very sophisticated password attack” was.
Why John Schindler’s “False Flags: The Kremlin’s Hidden Cyber Hand” is wrong
Guest post by Jonathan Nichols Originally a long tweet, here My response to @20committee cc:@counterJihader Why John Schindler’s “False Flags: The Kremlin’s Hidden Cyber Hand” is wrong. By Jonathan Nichols First, I should establish my credentials to speak on this matter. I joined the army in 2006 as a PSYOP soldier (we deal in Propaganda…
GitHub Security Update: Reused password attack
Posted June 16, and yet another reminder why you shouldn’t re-use passwords across sites. I know my readers don’t really need any such reminders, but do talk to your kids, parents, grandparents, friends…. What happened? On Tuesday evening PST, we became aware of unauthorized attempts to access a large number of GitHub.com accounts. This appears to…