Comments on: Cyber security news December 2020

By: Tomi Engdahl

Tomi Engdahl — Mon, 04 Jan 2021 17:08:03 +0000

Ticketmaster will pay $10 million for hacking rival ticket seller
It used stolen login credentials at a company summit
https://www.theverge.com/2020/12/30/22206955/ticketmaster-songkick-crowdsurge-hacking-deferred-prosecution-fine

Ticketmaster has agreed to pay $10 million for breaking into a competitors’ network. The company and its parent Live Nation admitted to hiring a former employee from rival ticket seller CrowdSurge, then using his knowledge — including old usernames and passwords — to learn CrowdSurge’s inner workings and “cut [the company] off at the knees.”

By: Tomi Engdahl

Tomi Engdahl — Mon, 04 Jan 2021 08:30:55 +0000

NSO used real people’s location data to pitch its contact-tracing tech, researchers say
Researchers say NSO’s use of real data “violated the privacy” of thousands of unwitting people.
https://techcrunch.com/2020/12/30/nso-fleming-data-location/

By: Tomi Engdahl

Tomi Engdahl — Mon, 04 Jan 2021 07:50:15 +0000

Insecure wheels: Police turn to car data to destroy suspects’ alibis
Looser privacy standards for vehicle data are a treasure chest of data for law enforcement.
https://www.nbcnews.com/tech/tech-news/snitches-wheels-police-turn-car-data-destroy-suspects-alibis-n1251939

For more than two years, Kalamazoo County sheriff’s detectives investigated French’s murder without making any arrests. Then, according to police records obtained by NBC News, one of the detectives learned of an emerging field — digital vehicle forensics — which focuses on extracting the treasure trove of data stored in an automobile’s onboard computers.

By: Tomi Engdahl

Tomi Engdahl — Sat, 02 Jan 2021 21:00:55 +0000

As Understanding of Russian Hacking Grows, So Does Alarm
https://www.nytimes.com/2021/01/02/us/politics/russian-hacking-government.html

Those behind the widespread intrusion into government and corporate networks exploited seams in U.S. defenses and gave away nothing to American monitoring of their systems.

By: Tomi Engdahl

Tomi Engdahl — Sat, 02 Jan 2021 14:57:51 +0000

https://hackaday.com/2020/12/06/leaking-data-by-ultrasound/

By: Tomi Engdahl

Tomi Engdahl — Sat, 02 Jan 2021 13:54:58 +0000

Thieves burglarize Russia’s nuclear war ‘doomsday’ plane
https://www.cnn.com/2020/12/09/europe/russian-doomsday-plane-scli-intl/index.html

By: Tomi Engdahl

Tomi Engdahl — Sat, 02 Jan 2021 13:23:17 +0000

Ledger Crypto Data Breach – 270,000 Wallet Owners Data has been leaked
https://threatit.com/articles/ledger-crypto-wallets-data-breach-270000-wallet-data-leaked/

By: Tomi Engdahl

Tomi Engdahl — Sat, 02 Jan 2021 09:11:50 +0000

The Great iPwn
Journalists Hacked with Suspected NSO Group iMessage ‘Zero-Click’ Exploit
https://citizenlab.ca/2020/12/the-great-ipwn-journalists-hacked-with-suspected-nso-group-imessage-zero-click-exploit/

By: Tomi Engdahl

Tomi Engdahl — Sat, 02 Jan 2021 08:22:45 +0000

New Golang-based Crypto worm infects Windows and Linux servers
https://securityaffairs.co/wordpress/112825/malware/golang-based-worm-windows-linux.html

Experts from Intezer discovered a new and self-spreading Golang-based malware that targets Windows and Linux servers.

By: Tomi Engdahl

Tomi Engdahl — Sat, 02 Jan 2021 08:01:08 +0000

Microsoft Says Suspected Russian Hackers Viewed Source Code
https://www.bloomberg.com/news/articles/2020-12-31/microsoft-says-suspected-russian-hackers-viewed-source-code

Software maker discovers unusual activity on internal accounts
Company says no customer data or services accessed by hackers