HackDig : Dig high-quality web security articles for hacker

The Great $50M African IP Address Heist

A top executive at the nonprofit entity responsible for doling out chunks of Internet addresses to businesses and other organizations in Africa has resigned his post following accusations that he secretly operated several companies which sold tens of millions of dollars worth of the increasingly scarce resource to online marketers. The allegations stemmed fr
Publish At:2019-12-11 20:35 | Read:230 | Comments:0 | Tags:A Little Sunshine Web Fraud 2.0 Adconion Direct AFRINIC Afri

Apple Explains Mysterious iPhone 11 Location Requests

KrebsOnSecurity ran a story this week that puzzled over Apple‘s response to inquiries about a potential privacy leak in its new iPhone 11 line, in which the devices appear to intermittently seek the user’s location even when all applications and system services are individually set never to request this data. Today, Apple disclosed that this beha
Publish At:2019-12-05 16:40 | Read:135 | Comments:0 | Tags:A Little Sunshine apple iPhone 11 Techcrunch Ultra Wideband

The iPhone 11 Pro’s Location Data Puzzler

One of the more curious behaviors of Apple’s new iPhone 11 Pro is that it intermittently seeks the user’s location information even when all applications and system services on the phone are individually set to never request this data. Apple says this is by design, but that response seems at odds with the company’s own privacy policy. The p
Publish At:2019-12-04 03:35 | Read:128 | Comments:0 | Tags:A Little Sunshine Apple iPhone 11 Pro location privacy locat

Why Were the Russians So Set Against This Hacker Being Extradited?

The Russian government has for the past four years been fighting to keep 29-year-old alleged cybercriminal Alexei Burkov from being extradited by Israel to the United States. When Israeli authorities turned down requests to send him back to Russia — supposedly to face separate hacking charges there — the Russians then imprisoned an Israeli woman
Publish At:2019-11-18 20:35 | Read:207 | Comments:0 | Tags:A Little Sunshine Ne'er-Do-Well News Alexei Burkov Cybereaso

Takeaways from the $566M BriansClub breach

Reporting on the exposure of some 26 million stolen credit cards leaked from a top underground cybercrime store highlighted some persistent and hard truths. Most notably, that the world’s largest financial institutions tend to have a much better idea of which merchants and bank cards have been breached than do the thousands of smaller banks and credit
Publish At:2019-11-12 03:35 | Read:178 | Comments:0 | Tags:A Little Sunshine Data Breaches Ne'er-Do-Well News Andrei Ba

NCR Barred Mint, QuickBooks from Banking Platform During Account Takeover Storm

Banking industry giant NCR Corp. [NYSE: NCR] late last month took the unusual step of temporarily blocking third-party financial data aggregators Mint and QuickBooks Online from accessing Digital Insight, an online banking platform used by hundreds of financial institutions. That ban, which came in response to a series of bank account takeovers in which cybe
Publish At:2019-11-12 03:35 | Read:244 | Comments:0 | Tags:A Little Sunshine The Coming Storm Web Fraud 2.0 credential

Study: Ransomware, Data Breaches at Hospitals tied to Uptick in Fatal Heart Attacks

Hospitals that have been hit by a data breach or ransomware attack can expect to see an increase in the death rate among heart patients in the following months or years because of cybersecurity remediation efforts, a new study posits. Health industry experts say the findings should prompt a larger review of how security — or the lack thereof — ma
Publish At:2019-11-12 03:35 | Read:138 | Comments:0 | Tags:A Little Sunshine The Coming Storm Department of Health and

Retailer Orvis.com Leaked Hundreds of Internal Passwords on Pastebin

Orvis, a Vermont-based retailer that specializes in high-end fly fishing equipment and other sporting goods, leaked hundreds of internal passwords on Pastebin.com for several weeks last month, exposing credentials the company used to manage everything from firewalls and routers to administrator accounts and database servers, KrebsOnSecurity has learned. Orvi
Publish At:2019-11-12 03:35 | Read:152 | Comments:0 | Tags:A Little Sunshine alex holden GitHub Hold Security Orvis pas

MyPayrollHR CEO Arrested, Admits to $70M Fraud

Earlier this month, employees at more than 1,000 companies saw one or two paycheck’s worth of funds deducted from their bank accounts after the CEO of their cloud payroll provider absconded with $35 million in payroll and tax deposits from customers. On Monday, the CEO was arrested and allegedly confessed that the diversion was the last desperate gasp
Publish At:2019-09-27 16:40 | Read:437 | Comments:0 | Tags:A Little Sunshine Ne'er-Do-Well News Michael T. Mann mypayro

Feds Allege Adconion Employees Hijacked IP Addresses for Spamming

Federal prosecutors in California have filed criminal charges against four employees of Adconion Direct, an email advertising firm, alleging they unlawfully hijacked vast swaths of Internet addresses and used them in large-scale spam campaigns. KrebsOnSecurity has learned that the charges are likely just the opening salvo in a much larger, ongoing federal in
Publish At:2019-09-19 16:10 | Read:266 | Comments:0 | Tags:A Little Sunshine Spam Nation The Coming Storm Adconion Dire

NY Payroll Company Vanishes With $35 Million

MyPayrollHR, a now defunct cloud-based payroll processing firm based in upstate New York, abruptly ceased operations this past week after stiffing employees at thousands of companies. The ongoing debacle, which allegedly involves malfeasance on the part of the payroll company’s CEO, resulted in countless people having money drained from their bank acco
Publish At:2019-09-19 16:10 | Read:189 | Comments:0 | Tags:A Little Sunshine Cachet Financial Services Dan L'Abbe Grani

Before He Spammed You, this Sly Prince Stalked Your Mailbox

A reader forwarded what he briefly imagined might be a bold, if potentially costly, innovation on the old Nigerian prince scam that asks for help squirreling away millions in unclaimed fortune: It was sent via the U.S. Postal Service, with a postmarked stamp and everything. In truth these old fashioned “advance fee” or “419” scams pr
Publish At:2019-09-19 16:10 | Read:249 | Comments:0 | Tags:A Little Sunshine Latest Warnings Ne'er-Do-Well News

Visa Alert and Update on the Oracle Breach

Credit card industry giant Visa on Friday issued a security alert warning companies using point-of-sale devices made by Oracle‘s MICROS retail unit to double-check the machines for malicious software or unusual network activity, and to change passwords on the devices. Visa also published a list of Internet addresses that may have been involved in the O
Publish At:2016-08-13 21:00 | Read:5036 | Comments:0 | Tags:A Little Sunshine Latest Warnings The Coming Storm alex hold

Road Warriors: Beware of ‘Video Jacking’

A little-known feature of many modern smartphones is their ability to duplicate video on the device’s screen so that it also shows up on a much larger display — like a TV. However, new research shows that this feature may quietly expose users to a simple and cheap new form of digital eavesdropping. Dubbed “video jacking” by its master
Publish At:2016-08-11 14:10 | Read:4803 | Comments:0 | Tags:A Little Sunshine Latest Warnings The Coming Storm Android B

Got Microsoft? Time to Patch Your Windows

Microsoft churned out a bunch of software updates today fix some serious security problems with Windows and other Microsoft products like Internet Explorer (IE), Edge and Office. If you use Microsoft, here are some details about what needs fixing. As usual, patches for IE and for Edge address the largest number of “critical” vulnerabilities. Crit
Publish At:2016-08-10 19:55 | Read:3368 | Comments:0 | Tags:A Little Sunshine Time to Patch Flash Player microsoft patch

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud