British Airways revealed a data breach impacting customer information from roughly 380,000 booking transactions. The company said that names, addresses, email addresses, and sensitive payment card details were all compromised. The threat detection firm that was analyzing the breach, published details of the hacker’s strategy, also linking the intrusion to a criminal hacking gang that has been active [...]
  • Personal information of 541k individuals has been stolen from an emergency contact database after the website of the French Ministry of Europe breached

    According to the Ministry’s public statement, the hackers managed to get their hands on the names, phone numbers, and email addresses of all people who had an account on the French Ariane emergency contact database. The platform is used by the French Ministry of Europe and Foreign Affairs to allow citizens traveling abroad to received security updates in case [...]
  • New Facebook Bug Exposed 6.8 Million Users Photos to Third-Party Apps

    Facebook's latest breach — a programming bug in Facebook website accidentally gave 1,500 third-party apps access to the unposted Facebook photos of as many as 6.8 million users. Facebook today quietly announced that it discovered a new API bug in its photo-sharing system that let 876 developers access users' private photos which they never shared [...]
  • Critical SQLite Flaw Leaves Millions of Apps Vulnerable to Hackers

    Dubbed as 'Magellan' by Tencent's Blade security team, the newly discovered SQLite flaw could allow remote attackers to execute arbitrary or malicious code on affected devices, leak program memory or crash applications. SQLite is the most widely deployed database engine in the world today, which is being used by millions of applications with literally billions [...]
  • Hacker Discloses New Windows Zero-Day Exploit On Twitter

    A security researcher with Twitter alias SandboxEscaper—who two months ago publicly dropped azero-day exploit for Microsoft Windows Task Scheduler—has yesterday released another proof-of-concept exploit for a new Windows zero-day vulnerability. SandboxEscaper posted a link to a Github page hosting a proof-of-concept (PoC) exploit for the vulnerability that appears to be a privilege escalation flaw residing in Microsoft Data [...]
  • Windows Built-in Antivirus Gets Secure Sandbox Mode – Turn It ON

    Microsoft Windows built-in anti-malware tool, Windows Defender, has become the very first antivirus software to have the ability to run inside a sandbox environment. Sandboxing is a process that runs an application in a safe environment isolated from the rest of the operating system and applications on a computer. So that if a sandboxed application [...]
  • Signal Secure Messaging App Now Encrypts Sender’s Identity As Well

    Signal, the popular end-to-end encrypted messaging app, is planning to roll out a new feature that aims to hide the sender's identity from potential attackers trying to intercept the communication. Although messages send via secure messaging services, like Signal,WhatsApp, and Telegram, are fully end-to-end encrypted as they transmit across their servers, each message leaves behind some of [...]
  • Hospital CEO forced to pay hackers in bitcoin

    Hospital administrator Steve Long was notified that his computer systems had just been hijacked by an unidentified criminal group. The hackers gave Long seven days to pay a ransom — or else. "We were very prepared. We understood that cyber attacks are common," Long told CNBC. Unfortunately for Long, the criminals had obtained the login [...]
  • Minister Reveals Cyber Attack On Iranian Data Centers, Blames Foreign Hackers

    Iran’s Telecommunications Ministry revealed on Saturday that ten days ago CISCO, the US company that manufactures network equipment had warned about the vulnerability of the router switches that were attacked Friday night. The ministry said that many companies freeze their networks’ settings during holidays, and that the companies did not update their settings as MAHER failed to inform them of the [...]
  • Saks, Lord & Taylor hacked; 5 million payment cards compromised

    Hackers made off with a whopping 5 million credit and debit card numbers from Saks Fifth Avenue, Saks Off 5th, and Lord & Taylor, placing it “among the most significant credit card heists in modern history.” Parent company Canada-based Hudson’s Bay Company announced the breach affecting the North American stores, saying, “HBC has identified the [...]
  • Latest Ransomware Outbreak Spreading From Eastern Europe

    A new strain of the Petya ransomware called "Bad Rabbit" is impacting business and sweeping across Russia and Ukraine, among other Eastern European countries. Like many of the other ransomware outbreaks, understanding fact from fiction is the first step in staying safe.
  • Trustico Shuts Down Website Over Alert of Serious Flaw

    Digital certificate vendor Trustico is facing a new crisis after a researcher tweeted about a severe vulnerability in the company's website. The vulnerability would appear to give root access to - and allow the downloading of - TLS/SSL digital certificates. The reported flaw comes as Trustico has sought since early February to revoke about 50,000 [...]
  • Major data breach at Marine Forces Reserve impacts thousands

    The personal information of thousands of Marines, sailors and civilians, including bank account numbers, was compromised in a major data spillage emanating from U.S. Marine Corps Forces Reserve. Roughly 21,426 people were impacted when an unencrypted email with an attachment containing personal confidential information was sent to the wrong email distribution list Monday morning. The [...]
  • Equifax Discloses 2.4 Million More Mega-Breach Victims

    Equifax has disclosed that an additional 2.4 million people were impacted by a massive cybersecurity breach last year, bringing the total to about 148 million people. The credit reporting agency says the new consumers were identified during forensic examination of the breach. They were previously unidentified, the company says, because their Social Security numbers were [...]
  • Feds Shut Down ‘Longest-Running’ Andromeda Botnet

    In a coordinated International cyber operation, Europol with the help of international law enforcement agencies has taken down what it called "one of the longest-running malware families in existence" known as Andromeda. Andromeda, also known as Win32/Gamarue, is an infamous HTTP-based modular botnet that has been around for several years now, and infecting computers with [...]
  • PayPal Subsidiary Data Breach Hits Up to 1.6 Million Customers

    Global e-commerce business PayPal has disclosed a data breach that may have compromised personally identifiable information for roughly 1.6 million customers at a payment processing company PayPal acquired earlier this year. PayPal Holdings Inc. said that a review of its recently acquired company TIO Networks showed evidence of unauthorized access to the company's network, including [...]
  • Cryptojacking: The hackers mining digital currencies from your computer

    In recent months, a new form of malware has emerged through malicious websites that harvest digital tokens using the processing power on the victim's computer. It has affected potentially millions of users, with proceeds from the operation totaling millions of pounds a year. A sudden trend in so-called "cryptojacking" has taken off in recent months, [...]
  • Hackers attack Sacramento transit system and demand $8,000 ransom

    Computer hackers directly attacked the Sacramento Regional Transit system computers this weekend, erasing data and threatening to do more harm if SacRT doesn’t pay them one bitcoin, now worth about $8,000. The attack erased parts of computer programs on the agency’s servers that affect internal operations, including the ability to use computers to dispatch employees [...]
  • Banking Trojan Gains Ability to Steal Facebook, Twitter and Gmail Accounts

    Security researchers have discovered a new, sophisticated form of malware based on the notorious Zeus banking Trojan that steals more than just bank account details. researchers at security firm Bitdefender have discovered that the banking Trojan has now been revamped with new espionage capabilities such as leveraging open-source tools for spoofing SSL certificates in order [...]
  • Critical Flaws in Intel Processors Leave Millions of PCs Vulnerable

    Several research groups have uncovered vulnerabilities in the Intel remote administration feature known as the Management Engine (ME) which could allow remote attackers to gain full control of a targeted computer. Now, Intel has admitted that these security vulnerabilities could "potentially place impacted platforms at risk." The popular chipmaker released a security advisory admitting that [...]
  • North Korea accused of stealing warship blueprints in hack

    North Korea's cyber army appears to be going after real weapons.Hackers tied to Kim Jong Un's regime stole blueprints and other information about warships and submarines last year when they broke into one of the world's biggest shipbuilders, according to South Korean lawmaker Kyeong Dae-soo. Blueprints, shipbuilding technology, weapons systems and test data related to [...]
  • Hackers breach top plastic surgery clinic

    A high-profile plastic surgery clinic has said it is "horrified" after hackers allegedly stole data during a cyber-attack. London Bridge Plastic Surgery (LBPS) said its IT experts and police found evidence of the breach. A group claiming to be behind the breach said it had "terabytes" of data. The hackers claimed that the data contained [...]
  • Financial secrets of super-rich clients stolen in Appleby hacking

    The super-rich clients of a Bermuda-based offshore company were braced for their financial secrets to be exposed after it admitted that its computer records had been hacked. Appleby said that it suffered a leak last year “which involved some of our data being compromised” and admitted that it was “not infallible” but denied any wrongdoing. [...]
  • Equifax slammed after major data breach:

    Credit reporting agency Equifax announced Thursday that it was the victim of a cyber security hack that impacts well over one-third of the United States population,resulting in the possible release of personal information, including Social Security numbers. An estimated 143 million people were affected by the breach, which took place earlier this year. According to [...]
  • Data breaches are up 29 percent over last year

    Data breaches are running 29 percent above last year, according to a report being released today by the Identity Theft Resource Center and Cyber Scout. Hacking was the leading cause of data breaches nationwide, more than 790 so far this year. More than 12 million records have been exposed, although two-thirds of data breach notifications [...]
  • Hackers Seize $32 Million in Ethereum in Parity Wallet Breach

    Parity Technologies has issued a critical security alert for their popular multi-signature wallet software following an apparent breach. The development team urged users holding ether in multi-sig contract wallets version 1.5 or later to immediately transfer their tokens to a secure address. The breach only affects multi-sig wallets; normal wallets appear to be safe. According [...]
  • Nation state hackers targeting energy grids around the globe

    Hackers could have infiltrated the UK's energy grid, GCHQ's National Cyber Security Centre (NCSC) has said. The authority warns that some firms' industrial control systems are likely to have been successfully compromised - and nation state hackers are the likely culprits. Russian government-backed hackers attacking the energy sector in the Republic of Ireland using phishing [...]
  • Zomato hacked: Security breach results in 17 million user data stolen

    Zomato has suffered a security breach with over 17 million user records stolen from the food-tech company's database. The stolen information has email addresses and hashed passwords of customers. According to Hackeread.com, a user by the name of "nclay" claimed to have hacked Zomato and was willing to sell data pertaining to 17 million registered [...]
  • Hackers mint crypto-currency with technique in global ‘ransomware’ attack

    A computer virus that exploits the same vulnerability as the global "ransomware" attack has latched on to more than 200,000 computers and begun manufacturing digital currency. The development adds to the dangers exposed by the WannaCry ransomware and provides another piece of evidence that a North Korea-linked hacking group may be behind the attacks. WannaCry, [...]
  • Bell Canada Hacked: Data of 1.9 Million Customers Stolen

    While we all were busy in the WannaCry ransom ware menace, two separate data breaches have been reported, one in DocuSign, a major provider of electronic signature technology, and another in BELL, Canada’s largest telecommunications company. Canadian mobile phone, TV, and internet service provider Bell on Monday confirmed that the company had been hit by [...]