Black Hat World
June 23, 2014
•[ hack, sqlinjection, technology ]
In June 2014, the search engine optimisation forum Black Hat World had three quarters of a million accounts breached from their system. The breach included various personally identifiable attributes which were publicly released in a MySQL database script.
Reuters
June 22, 2014
•[ hack, technology ]
The Syrian Electronic Army is back and hacks Reuters redirecting the users to a web page supporting the Syrian regime. However the hack was possible after allegedly compromising Taboola, the ad provider.
Sumo Torrent
June 21, 2014
•[ hack, misconfiguration, technology ]
In June 2014, the torrent site Sumo Torrent was hacked and 285k member records were exposed. The data included IP addresses, email addresses and passwords stored as weak MD5 hashes.
Code Spaces
June 18, 2014
•[ hack, ddos, technology ]
Code Spaces, a code-hosting service abruptly closes after someone gains unauthorized access to its Amazon Web Service account and deletes most of the customer data. The company refused to pay a ransom after being extorted via a DDoS attack.
Move, Inc.
June 18, 2014
•[ hack, ddos, technology ]
Move, Inc. is hit by a major DDoS attack.
AT&T
June 16, 2014
•[ insider, technology ]
AT&T confirms that outside attackers (allegedly employees of one of AT&T's service providers) compromised the personal information of an undisclosed number of AT&T Mobility members.
Synology NAS Boxes
June 13, 2014
•[ financial, malware, technology ]
Dell SecureWorks reveals that unknown hackers were able to hijack Synology NAS Boxes for mining Dogecoin, reaping $620,000 in two months.
Feedly
June 11, 2014
•[ financial, ddos, technology ]
News aggregator Feedly is made inaccessible by a DDoS attack. Attackers demand a ransom to stop their crippling assault, which the company refuses to pay.
Deezer
June 10, 2014
•[ hack, ddos, technology ]
The French music service Deezer is struck by a DDoS attack, which remains unavailable during the weekend.
Evernote
June 10, 2014
•[ hack, ddos, technology ]
Mobile and online note app Evernote was hit with a DDoS attack, taking its servers offline for several hours.
Manga Traders
June 9, 2014
•[ leak, misconfiguration, technology ]
In June 2014, the Manga trading website Mangatraders.com had the usernames and passwords of over 900k users leaked on the internet (approximately 855k of the emails were unique). The passwords were weakly hashed with a single iteration of MD5 leaving them vulnerable to being easily cracked.
ESET
June 6, 2014
•[ hack, technology ]
The ESET Security Forum is hacked and the company confirms that account credentials of its roughly 2,700 members have been accessed by the attackers.
Spotify
May 27, 2014
•[ hack, technology ]
Spotify warns of unauthorized access to the company's network and internal data. The unauthorized access appears to involve data for a single, unspecified person.
Avast
May 27, 2014
•[ hack, technology ]
The support forum of Avast is hacked. Attackers get access to cryptographically hashed passwords, usernames, and e-mail addresses for about 400,000 people.
Typepad
May 19, 2014
•[ hack, ddos, technology ]
Typepad, the famous blogging platform is under a sustained DDoS attack.
Moz
May 17, 2014
•[ hack, ddos, technology ]
Yet another DDoS attack. This time the victim is moz.com.
Rescator
May 17, 2014
•[ hack, technology ]
Rescator, a popular underground website that sells payment card data, is hacked and defaced.
Point DNS
May 9, 2014
•[ hack, ddos, technology ]
Domain host Point DNS has been hammered with a high intensity DDoS attack on Friday, knocking servers out for hours.
Bitly
May 8, 2014
•[ hack, technology ]
In May 2014, the link management company Bitly announced they'd suffered a data breach. The breach contained over 9.3 million unique email addresses, usernames and hashed passwords, most using SHA1 with a small number using bcrypt.
Orange
May 7, 2014
•[ hack, technology ]
French telecommunications group Orange announces that a breach last month resulted in the theft of the personal information of 1.3 million of its customers, including phone numbers, dates of birth, and email addresses.
