Hack-tualité by G-echo - Dlp - Semaine 2019/5

Dlp - Semaine 2019/5

Massive 2.2bil-username data dump leaked on dark web
Fri, 01 Feb 2019 04:56:26 GMT
A second major data dump has hit the dark web in two weeks, compromising of 2.2 billion unique usernames and passwords.<p>The data dump has been dubbed …
Various Google Play “Beauty Camera” Apps Sends Users Pornographic Content, Redirects Them to Phishing Websites and Collects Their Pictures
Wed, 30 Jan 2019 13:37:07 GMT
We discovered several beauty camera apps (detected as AndroidOS_BadCamera.HRX) on Google Play that are capable of accessing remote ad configuration …
Data management giant Rubrik leaked a massive database of client data in security lapse
Tue, 29 Jan 2019 23:15:09 GMT
Zack Whittaker
A server security lapse has exposed a massive database of customer information belonging to Rubrik, an IT security and cloud data management giant.<p>The company pulled the server offline Tuesday within an hour of TechCrunch alerting the company, after the data was found by security researcher Oliver …
Unsecured MongoDB databases expose Kremlin's backdoor into Russian businesses
Tue, 29 Jan 2019 08:59:08 GMT
Catalin Cimpanu
"Admin@kremlin.ru" account spotted on thousands of Russian-linked, internet-exposed MongoDB databases.<p>A Dutch security researcher has stumbled upon …
Millions of Financial Records Leaked at Texas-Based Data Firm
Thu, 24 Jan 2019 08:16:35 GMT
Dell Cameron
For at least the third time in as many days, a large cache of sensitive data has been reportedly exposed due to a misconfigured Elasticsearch server. …
BlackRock's data leak strikes 20,000 advisors, mostly at LPL
Thu, 24 Jan 2019 08:12:58 GMT
The leak affected advisors who do business with the asset manager’s iShares ETF unit.
Mother of All Breaches Exposes 773 Million Emails, 21 Million Passwords
Thu, 17 Jan 2019 19:11:21 GMT
Victoria Song
There’s no shortage of data breaches these days, but this one should make you sit up and pay attention. The newly discovered “Collection #1" is the …
Unprotected Government Server Exposes Years of FBI Investigations
Thu, 17 Jan 2019 08:30:18 GMT
Swati Khandelwal
A massive government data belonging to the Oklahoma Department of Securities (ODS) was left unsecured on a storage server for at least a week, …
Data Exposed in OXO, Amazon India, and MongoDB Leaks
Mon, 14 Jan 2019 17:58:19 GMT
2019 has so far been making good on security experts’ predictions that there will be no ebb in data exposures for the new year: In the first half of …
Vos vieux tweets permettent de connaître l’adresse de votre domicile
Fri, 11 Jan 2019 12:59:00 GMT
BFMTV
Des chercheurs ont étudié les messages de 87 000 utilisateurs, auxquels étaient associées des coordonnées GPS. Grâce à un logiciel, ils ont pu …
Over 202 Million Chinese Job Seekers' Details Exposed On the Internet
Fri, 11 Jan 2019 08:52:27 GMT
January 10, 2019
Cybersecurity researcher has discovered online a massive database containing records of more than 202 million Chinese citizens that remained …
Credentials leaked in public? Here’s what Grofers implemented to prevent such mishaps!
Sun, 30 Dec 2018 18:09:04 GMT
Avinash Jain (https://twitter.com/logicbomb_1)BlockedUnblockFollowFollowing<p>Nov 3<p>A report from the security firm Detectify said that they analyzed …
Data Loss Prevention — Who owns what?
Sun, 30 Dec 2018 18:07:59 GMT
Matt ArickBlockedUnblockFollowFollowing<p>Jun 15<p>Having endpoint data loss prevention (DLP) capability has become an essential part of any information …
The State of Digital Security in 2018 [An Honest Look]
Fri, 28 Dec 2018 14:29:44 GMT
2018 has been a roller-coaster ride when it comes to cybersecurity. It was the year that announced major security breaches almost every week. This …
Over 19,000 Orange Livebox ADSL modems are leaking their WiFi credentials
Sun, 23 Dec 2018 21:42:18 GMT
by Troy Mursch
On Friday, December 21, 2018, our honeypots observed an interesting scan consisting of a GET request for /get_getnetworkconf.cgi. Upon further …
La diplomatie de l'Union européenne infiltrée par des hackers
Thu, 20 Dec 2018 07:39:05 GMT
Des pirates informatiques ont infiltré pendant au moins trois ans le réseau de communication diplomatique de l'Union européenne, téléchargeant des …
New Facebook Bug Exposed 6.8 Million Users Photos to Third-Party Apps
Fri, 14 Dec 2018 21:13:21 GMT
December 14, 2018
Facebook's latest screw-up — a programming bug in Facebook website accidentally gave 1,500 third-party apps access to the unposted Facebook photos of …
Des données personnelles piratées sur un site du quai d’Orsay
Fri, 14 Dec 2018 05:26:00 GMT
Camille Zaghet
Le ministère des Affaires étrangères a révélé dans un communiqué que plusieurs données personnelles avaient été piratées. En effet, des fichiers qui …
Knowledge Is Power: Exploring Over 1,800 Calibre E-Book Servers.
Wed, 12 Dec 2018 07:21:44 GMT
December 11, 2018
TLDR;<p>Shodan can be used to find Calibre servers.<br>• I wrote an nmap script for identification and metadata analysis<br>• 2.5 million titles are available on …
Your Apps Know Where You Were Last Night, and They’re Not Keeping It Secret
Tue, 11 Dec 2018 14:01:37 GMT
The New York Times
Dozens of companies use smartphone locations to help advertisers and even hedge funds. They say it’s anonymous, but the data shows how personal it is.
Quora Gets Hacked – 100 Million Users Data Stolen
Tue, 04 Dec 2018 08:04:34 GMT
December 03, 2018
The World's most popular question-and-answer website <b>Quora</b> has suffered a massive data breach with unknown hackers gaining unauthorized access to …
How to check if you’re affected by the Marriott mega data breach
Fri, 30 Nov 2018 23:01:06 GMT
MIT Technology Review
The Marriott hotel group says information belonging to up to 500,000 customers of its Starwood hotels may have been compromised. That would make it …
Massive data leak exposes millions of U.S. citizens' and companies' records
Fri, 30 Nov 2018 09:13:59 GMT
Francis Navarro
Data leaks have seemed to become commonplace in our society. One day it's Equifax, the next day it's Target - it seems to never end. Well once again …
Amazon victime d'un bug informatique
Thu, 22 Nov 2018 04:52:21 GMT
Raphael Bloch
Les noms et les adresses mails de certains des clients du géant américain ont été dévoilés.<p>Mauvais timing pour Amazon. A moins de 48 heures du « …
Income, tax and immigration data stolen in Healthcare.gov breach
Sat, 10 Nov 2018 08:56:56 GMT
AJ Dellinger
75,000 people were affected, including children.<p>The Centers for Medicare and Medicaid Services (CMS) now has details about the data stolen in the breach of Healthcare.gov that occurred last month. According to the government agency, a significant amount of personal information including partial …
Lloyds replacing some debit cards after cyber-attacks
Sat, 03 Nov 2018 22:21:44 GMT
<b>Lloyds Banking Group has confirmed it is reissuing debit cards to customers affected by cyber-attacks on Ticketmaster and British Airways.</b><p>The bank has reissued debit cards to all customers that have made purchases on Ticketmaster's website.<p>It is also working with BA to establish which customers …
Government Spyware Vendor Left Customer, Victim Data Online for Everyone to See
Thu, 25 Oct 2018 07:26:48 GMT
Lorenzo Franceschi-Bicchierai
The Germany-based spyware startup Wolf Intelligence exposed its own data, including surveillance target’s information, passports scans of its founder and family, and recordings of meetings.<p>A startup that claims to sell surveillance and hacking technologies to governments around the world left …
By G-echo