Data Security News Headlines 11th July, 2016

  1. Twitter CEO Jack Dorsey’s account hacked.

After a series of celebrity Twitter handle hacks over the past few months, Jack Dorsey, the CEO of Twitter, had his account compromised briefly on Saturday, a media report said. OurMine claimed responsibility for the hack, which was spotted after the group managed to post some benign video clips. The team also tweeted at 2:50 AM ET today saying “Hey, it’s OurMine, we are testing your security,” with a link to their website that promotes and sells its own “services” for which it has already made $16,500. Since all tweets posted to Dorsey’s account came through Vine, it’s possible that the group had used passwords from recent mega breaches in LinkedIn, MySpace, and Tumblr to hack Dorsey’s Vine account or any other service, which had given OurMine access to his Twitter account.

Cyber security tips: To prevent from such hack is immediately change your password, use strong passwords, use two way authentication, and avoid use of same passwords for different account.

  1. Hacker claims to have leaked 80,000 Amazon Kindle passwords

A hacker has claimed to breach one of Amazon’s servers and released personal information and passwords of approximately 80,000 Kindle users. According to a series of tweets sent out by the hacker, who goes by the name ‘0x2Taylor’, released the information after the online ecommerce giant ignored his warnings about vulnerabilities related to its servers. He sent out the first tweet mocking Amazon on July 8 after which he leaked the data base online on Mega cloud storage service. The database contains information about users’ email, passwords, city, state, calling number and much more. Though the leak is a dangerous one, he has just asked for a sum of $700, claiming it was easy for him.

Cyber security tips for amazon is to tell user change password, use the strong passwords, Vulnerability scanning, and check for security misconfiguration, check services which are open, use transport layer security.

  1. Wendy’s says more than 1,000 restaurants were affected by hackers

The Popular fast-food restaurant chain Wendy’s on Thursday admitted that a massive cyber-attack had hit more than 1,000 of its restaurants across the country. The burger chain did not speculate how many people may have been affected, though it did confirm that the hackers were able to steal its customers’ credit and debit card information. The Malware had been installed on Point-of-Sale (PoS) systems in the affected restaurants and was able to obtain cardholder’s name, payment card number, expiration date, service code, cardholder verification value, among other data. Wendy’s has blamed a third-party for the cyber-attack, saying a “service provider” had its remote access credentials compromised that allowed attackers to deploy malware remotely to some franchisees’ POS systems.

Cyber security tips – Use firewall for unauthenticated access, use IDS and IPS for detecting malicious activities, Check for remote access service, Vulnerabity assessment use transport layer security, and secure users data by encryption, if you are Wendy’s user then keep eye on your bank statement.

  1. Putin signs new anti-terror law in Russia

The new legislation signed by Putin would compel the country’s telephone carriers and Internet providers to record and store the private communications of each and every one of their customers for six months – and turn them over to the government if requested.The data collected on customers would include phone calls, text messages, photographs, and Internet activities that would be stored for six months, and “metadata” would be stored up to 3 years. Moreover, Instant messaging services that make use of encryption, including WhatsApp, Telegram, and Viber, could face heavy fines of thousands of pounds if these services continue to operate in Russia without handing over their encryption keys to the government

  1. Facebook messenger adds End-To-End Encryption

Facebook has begun rolling out end-to-end encryption for its Messenger app, thus making its users’ conversations completely private. The end-to-end encryption feature, dubbed “Secret Conversations,” will allow Messenger users to send and receive messages in a way that no one, including the FBI with a warrant, hackers and not even Facebook itself, can intercept them. However, Facebook chief security officer Alex Stamos tweeted that the encryption opt-in feature on Messenger was a “small test for now,” with an aim to “get feedback from people about what works best

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

Blog at WordPress.com.

Up ↑

%d bloggers like this: