A leading US supplier of voting machines confirmed on Thursday that it exposed the personal information of more than 1.8 million Illinois residents.
State authorities and the Federal Bureau of Investigation were alerted this week to a major data leak exposing the names, addresses, dates of birth, partial Social Security numbers, and party affiliations of over a million Chicago residents. Some driver’s license and state ID numbers were also exposed. Jon Hendren, who works for the cyber resilience firm UpGuard, discovered the breach on an Amazon Web Services (AWS) device that was not secured by a password.
Read moreAndroid users need to be on the lookout yet again for a new type of malware targeting the mobile devices. The latest attack poses as an update to Flash and targets banking information and credit card details of its victims.
The attack, discovered by security researchers at SophosLabs, has been identified as Andr/Banker-GUA or Invisible Man —a variant of a well-known banking malware known as Svpeng that previously ran amok on Android devices. The modified version of the trojan originally developed by Russian hackers has an additional threat that was absent in the original: a keylogger that keeps track of everything a victim types on their infected devices.
Read moreMore than £108,000 in bitcoin paid by victims of the WannaCry ransomware attack, which crippled parts of the NHS as well as businesses in 150 countries worldwide, has been withdrawn from the digital wallets the funds were being held in.
Nearly three months after the ransomware struck computers, locking up data, demanding ransoms and causing chaos in hospitals and firms including Spain’s Telefonica and FedEx, a total of £108,953 worth of bitcoin was withdrawn. The money, presumably moved by the hackers, was taken from three bitcoin wallets associated with WannaCry, according to tracking firm Elliptic.
Read moreA threat analyst at the cybersecurity firm Mandiant has been hacked and the attackers are claiming to have lurked on his computer for a year, collecting his login credentials for various sites and tracking his location.
The hackers got their hands on some internal data about the clients Mandiant and its parent company FireEye protect, including the Israeli Defense Forces. Mandiant confirmed the data breach. “We are aware of reports that a Mandiant employee’s social media accounts and personal laptop have been compromised. We are investigating this situation, and have taken steps to limit further exposure,” a FireEye spokesperson told.
Read moreIn September 2016, researchers from Chinese firm Tencent Keen Security Lab managed to hack into a Tesla Model S and take control of various systems. Now, that group has done the same thing with a Tesla Model X.
Keen Lab's researchers found several zero-day exploits hidden within multiple Tesla in-car modules, which allowed them to access the car's CAN BUS system, which is responsible for making sure every system plays nice with one another. After bypassing Tesla's firmware signing system, researchers installed new firmware that could execute custom commands. Keen Lab took control of the car's lights, displays and doors, the latter of which could be opened at random intervals.
Read moreItaly's largest bank, UniCredit, says accounts of some 400,000 customers in Italy have been hacked. The bank said in a statement Wednesday that the hackers accessed only data related to personal loans, and that it was breached through an unidentified external third-party commercial partner.
Initial breaches occurred September and October of 2016 and had not previously been disclosed. They were followed by a more recent one in June and July. The bank said no passwords appear to have been jeopardised, but that personal data, including names and birthdates, along with IBAN numbers "might have been accessed."
Read moreAndroid often makes the news for being the mobile platform that’s most susceptible to malware. But that doesn’t mean that iOS is completely safe. In fact, it turns out that hackers can take over your iPhone, iPad, or iPod touch and control it without your knowledge.
So you’d better update your device to the latest iOS version, which was just released. Even your brand new iPhone 7 is a potential target, so don’t think that just because it’s fresh hardware, it can’t be attacked by malicious individuals. Apple says on its support pages that iPhone 5 or later, iPad 4th generation or later and iPod touch 6th generation are all affected by this serious bug.
Read moreA scooter you can also remote control sounds cool, until you find out it can be hacked. Then it's not cool at all — it's terrifying. Every Friday, I ride an electric Segway/Ninebot miniPRO around the office. It's my favorite rideable (A.K.A. balance board, A.K.A., hoverboard).
It's also the only one that includes a remote control that I can use to send it running around the office on its own. The remote control does not work when I'm standing on the Segway miniPRO, which itself is essentially a tiny version of the original self-balancing mobility device introduced 16 years ago by inventor Dean Kamen.
Read moreBotnets distributing FlokiBot point-of-sale malware have awoken from months of slumber and are back in business spewing a new malware dubbed LockPoS.
Researchers say the malware is still flying under the radar of many antivirus and intrusion detection systems because it’s so new. Currently, LockPoS is believed to be targeting Brazilian-based companies, according to Arbor Networks, a division of NetScout. Researchers there said they recently noticed the PoS malware after observing slumbering command-and-control servers used by FlokiBot coming back online.
Read moreA notorious form of Trojan malware capable of infecting machines running Windows, Mac OSX, Linux and Android and more has resurfaced and this time it's targeting the global aerospace industry.
The US, Switzerland, Austria, Ukraine are the countries being most targeted by email spam campaigns attempting to deliver the Adwind remote access trojan - also known as AlienSpy, Frutas, Unrecom, Sockrat, JSocket and jRat. Adwind first appeared in 2013 and has been active ever since. The malware is capable of creating backdoors and conducting full-scale espionage against targets.
Read moreAxarhöfði 14,
110 Reykjavik, Iceland