Hackers Breached 3 US Antivirus Providers

Malware

In a report published yesterday, researchers revealed that a collective of Russian and English-speaking hackers are actively marketing the spoils of data breaches at three US-based antivirus software vendors. The collective, calling itself “Fxmsp,” is selling both source code and network access to the companies for $300,000 and is providing samples that show strong evidence of the validity of […]

Comment: Amazon Hit By Extensive Fraud With Hackers Siphoning Merchant Funds

Amazon authentication

loomberg reported yesterday that Amazon.com Inc has been reportedly hit by an “extensive” fraud, revealing that unidentified hackers were able to siphon funds from merchant accounts over six months last year.  https://t.co/VGLGhCHqyn has been hit by an "extensive" fraud, revealing that unidentified hackers were able to siphon funds from merchant accounts over six months last year : […]

Microsoft Is Killing Off Passwords In Its Software And Services

Enterprise Visibility into Threats and Vulnerabilities

Windows Hello, Microsoft’s authentication system that comes with Windows 10, is now officially recognised as an authenticator, which means the company is inching towards completely killing off passwords in its software and services, reports TechRadar.   What's 3x faster than a password? Windows Hello – allowing you to log-in with facial recognition. Explore more of our built in accessibility […]

Comment: Exposed MongoDB Database Leaks 275 Million Indian Citizen Records

000Webhost Breach

It has been revealed that a huge MongoDB database exposing 275,265,298 records of Indian citizens containing detailed personally identifiable information (PII) was left unprotected on the Internet for more than two weeks. Security Discovery researcher Bob Diachenko discovered the publicly accessible MongoDB database hosted on Amazon AWS using Shodan, and as historical data provided by the platform showed, the […]

Samsung Spilled SmartThings App Source Code And Secret Keys

In response to the news broken by TechCrunch that a development lab used by Samsung engineers was leaking highly sensitive source code, credentials and secret keys for several internal projects, including its SmartThings platform. Brian Higgins, Security Specialist at Comparitech.com:  “This is a classic, although devastating example of insider threat. Not all data breaches are malicious […]