blog trackingRealtime Web Statistics Exposed Archives - Gregory D. Evans | Worlds No. 1 Security Consultant | Gregory D. Evans | Worlds No. 1 Security Consultant

Posts Tagged ‘exposed’

Here’s every type of data exposed in the Ashley Madison hack

Source: National Cyber Security – Produced By Gregory Evans

Share on Facebook Tweet (233) Share (4) Pin There are plenty of ways to look up whether your information has been exposed in the Ashley Madison hack — all you need is an email address. And while that alone certainly speaks volumes, email addresses are just a small sliver of the information found in the nearly 10GB data dump (compressed total file size) containing what looks to be over 36 million Ashley Madison accounts and 9 million individual credit card transactions. The amount of data tied to each account, found across numerous spreadsheets, is as mind-bending as the messy ramifications and may include some (if not all) of the following: Creation date and last updated date, down to the second Account type and membership status (listed as a 0, 1, 2, or 3) First and last name (at least, the one given) and nickname Listed street address, including city, state, zip code, and in some cases even the latitude and longitude lines Up to three phone numbers, including work and mobile (if provided) Gender (approximately 27 million male-identified and 4.4 million female-identified accounts, which is about a 6-to-1 ratio with 2 million undetermined) Date of birth Profile caption (examples include “No Games […]

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post Here’s every type of data exposed in the Ashley Madison hack appeared first on National Cyber Security.

View full post on National Cyber Security

Find out if your Android device is exposed to MMS attacks using Zimperium’s Stagefright Detector App

Last week, security researchers from Zimperium have reported on a vulnerability in Android’s Stagefright media playback library, one that is thought to affect about 950 million active Android devices. In a nutshell, potential hackers can take control of the affected smartphones by sending a malicious SMS. For more details on the Stagefright vulnerability, check out our original post here.

Zimperium has now launched an app that lets users check if their smartphone or tablet is exposed to the Stagefright vulnerability. The app is intuitively called the Stagefright …

View full post on PhoneArena

Hacking Team, Which Sells Surveillance Tech To Governments, Exposed By Major Hack

Source: National Cyber Security – Produced By Gregory Evans

One of the technology world’s most notorious providers of surveillance and intrusion software has found itself on the wrong end of an embarrassing hack. A range of sensitive documents belonging to Italy-based Hacking Team, which is known for working with governments worldwide, appeared to leak out over the weekend, including email communications and client lists. The hackers, who remain unidentified at this time, also took over the group’s Twitter account, using it to post screenshots of emails and other details, as CSO first reported. Hacking Team is a mysterious organization which has long been thought to sell tracking and hacking software to governments, particularly those in developing markets. The organization describes itself as providing “effective, easy-to-use offensive technology to the worldwide law enforcement and intelligence communities”. One tool that it is known to offer is Davinci, a service marketed at law enforcement organization that can purportedly access SMS, emails, web browsing and more to locate specific targets. Last year, the organization denied selling technology to “any repressive regime” following a report from a report from Citizen Lab, but early leaks of the files — which weigh it at over 400GB — appear to show government contracts with Kazahkstan, Sudan, Russia, Saudi Arabia and others. In addition, […]

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post Hacking Team, Which Sells Surveillance Tech To Governments, Exposed By Major Hack appeared first on National Cyber Security.

View full post on National Cyber Security

Google leaves most Android users exposed to hackers

index

Source: National Cyber Security – Produced By Gregory Evans

People with Android smartphones and tablets running older versions of the mobile operating system — around 60 percent of all Android users — are going to have to live with a security flaw Google has decided not to fix. A known security bug in the default, unbranded Web browser for Android 4.3 Jelly Bean and older versions of Google’s mobile OS will go unpatched, Google’s chief of security for Android wrote in a Google+ post on Friday. “Keeping software up to date is one of the greatest challenges in security,” Adrian Ludwig wrote. Because the browser app is based on a version of the WebKit browser engine that’s now more than two years old, fixing the vulnerability in Android Jelly Bean and earlier versions is “no longer practical to do safely,” he wrote. Google confirmed on Saturday that Ludwig’s post is the company’s official position on the matter. The company’s decision has upset security experts, who worry hackers will be able to easily target the hundreds of millions of people using phones and tablets that run older versions of Android. Ludwig contends the number of people potentially affected by the vulnerability is “shrinking every day.” But for security professionals, it’s […]

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post Google leaves most Android users exposed to hackers appeared first on National Cyber Security.

View full post on National Cyber Security

Another hacker group exposed to have ties with Bashar al-Assad’s government

Source: National Cyber Security – Produced By Gregory Evans

Another hacker group exposed to have ties with Bashar al-Assad’s government

Following numerous high-profile cyber attacks from the Syrian Electronic Army (SEA) hacker group, which has links to the government of Syrian President Bashar al-Assad, security firm FireEye has uncovered malicious activities from a lesser-known second group. The Syrian Malware Team […]

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post Another hacker group exposed to have ties with Bashar al-Assad’s government appeared first on National Cyber Security.

View full post on National Cyber Security

Breaches exposed 1 in 7 US debit cards in 2013

Data breaches at retailers and financial services companies exposed 14 percent of all U.S. debit cards in 2013, according to a nationwide survey by a major ATM network operator. View full post on Computerworld Cybercrime and Hacking News ________________ Other Sites You May Like: http;//AmIHackerProof.com – http://hackerforhire.com — Read More….

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post Breaches exposed 1 in 7 US debit cards in 2013 appeared first on National Cyber Security.

View full post on National Cyber Security

The DeKalb Health Patient Information Exposed By The DataBreach

Hacker

The Indiana’s DeKalb Health recently announced that some patient information may have been exposed when a server operated by the third-party vendor “was the main target of an overseas hacking attack” ( h/t Becker’s Hospital) The hospital learned on February 12, 2014 that the personal information of 17 users of its online bill pay Web site may have been accessed, including those users names, home addresses, credit card numbers and social Security numbers . Read More….

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post The DeKalb Health Patient Information Exposed By The DataBreach appeared first on National Cyber Security.

View full post on National Cyber Security

Hackers behind #OpIsrael Exposed by Israel Elite Force

Internet pornography loophole

As we wrote in our previous days that a  number of israelian websites have been hacked and many of the government websites were also taken down during a cyber attack launched by anonymous, Anonghost and few others. A group of Israeli hackers claiming to be Israel Elite Force have leaked the information of few participants , The same group have previously leaked Ip , photos and email passwords of last year participants. Israelian Hacker Buddhax have identified many attackers of #OpIsraelBirthday , Information about attackers as uploaded on DropBox and the hacker even published a message in the leaked information …continue reading

For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com

The post Hackers behind #OpIsrael Exposed by Israel Elite Force appeared first on National Cyber Security.

View full post on National Cyber Security

Boxee.tv breach exposed data of 1,54000 users

http://gigaom2.files.wordpress.com/2012/10/boxeetv-perspective-e1350342282171.jpg

Ars reports that last week’s hack of Boxee revealed the data, including username, email address, passwords and forum messages of over 154000 users. The data is published online in a massive MySQL file of about 800 MB in size which is still circulating online. 

Boxee.tv is a web based tv service that was acquired by Samsung last year. Ars reports that the breach occurred no later than last week, when a full copy of the purloined forum data became widely available, Scott A. McIntyre, a security researcher in Australia, told Ars. 

On Tuesday, officials from password management service LastPass began warning customers with e-mail addresses included in an 800 megabyte file that’s still circulating online. 

The file contains personal data associated with 158,128 user accounts, about 172,000 e- mail addresses, and the cryptographically scrambled passwords that corresponded to those Boxee accounts, LastPass said. 

The dump also included a wealth of other details, such as user birth dates, IP addresses, site activity, full message histories, and password changes. All user messages sent through the service were included as part of the leak.

View full post on Who Got Hacked – Latest Hacking News and Security Updates

Password bug exposed shoppers’ credit cards in eBay ProStores

http://www.ecommercebytes.com/cab/abn/y11/m06/i06/images/ebay_prostores.jpg 

Security research at Infosec claims he had found a serious bug in eBay ProStores that enabled him to see the cradit card details of the customers in plain text. Mark Litchfield, an infosec pro at Securatary, told he discovered a flaw in eBay-owned ProStores that not only opened the door to store account hijackers, but also leaked “full access to all their customers PII [Personally identifiable information] as well as their full credit information in clear text.”

 ProStores hosts online shops for eBay sellers to use to flog their stuff, and provides a wizard for creating the traders’ websites.

 Mark Litchfield said it was a very serious bug. I had reported it to eBay in Feb but it took them almost two months to fix it on March 20. He said that in order to gain control of a victim’s eBay ProStores site, the attacker must create her own ProStores account – there’s a handy 30-day free trial available – and then use that as a springboard to infiltrate the victim’s web bazaar.

 “In short, it was possible to change the password of another administrator, then you could log in as that user with full administrative access to the store,” Litchfied claimed. ” With this attack I guess I was more shocked than anything to find the credit card information being displayed back in clear text. If people are buying things online, why would the full card information need to returned in clear text to the administrator?”

View full post on Who Got Hacked – Latest Hacking News and Security Updates

Page 1 of 512345»

My Twitter

Gregory D. Evans On Facebook