TechCrunch: We Heart It says a data breach affected over 8 million accounts, included emails and passwords. “We Heart It, an image-sharing site used by 40 million teens as of a couple of years ago, is informing users their personal data may have been compromised. The company was alerted to a possible security breach last week that involved over 8 million accounts, it said on Friday. The breach took place a few years ago and includes email addresses, usernames and encrypted passwords for We Heart It accounts created between 2008 and November 2013.”
Engadget: Latest Adobe Flash vulnerability allowed hackers to plant malware. “Adobe Flash may be on its way out, but apparently, its goodbye tour is going to be marred by security issues just as the software has for most of its existence. Kaspersky Labs reports that a new Adobe Flash vulnerability was exploited by a group called BlackOasis, which used it to plant malware on computers across a number of countries. “
Reuters: Microsoft responded quietly after detecting secret database hack in 2013. “Microsoft Corp’s secret internal database for tracking bugs in its own software was broken into by a highly sophisticated hacking group more than four years ago, according to five former employees, in only the second known breach of such a corporate database.”
Ars Technica, in our, “You’ve-Got-to-Be-Kidding-Me” Department: Equifax website borked again, this time to redirect to fake Flash update. “In May credit reporting service Equifax’s website was breached by attackers who eventually made off with Social Security numbers, names, and a dizzying amount of other details for some 145.5 million US consumers. For several hours on Wednesday, and again early Thursday morning, the site was maliciously manipulated again, this time to deliver fraudulent Adobe Flash updates, which when clicked, infected visitors’ computers with adware that was detected by only three of 65 antivirus providers.” Can someone please just shut this company down. This is insane.
ZDNet: Republican polling firm’s database was hacked, exposing donor records. “A Republican phone polling firm has been hacked, exposing data on hundreds of thousands of Americans who submitted donations to political campaigns, ZDNet has learned. Several database files, one of which totaled 223 gigabytes in size and amountied to about two billion lines of data, was stolen in January from Victory Phones, a Grand Rapids, MI-based automated phone research and data compilation firm.”
Digital Trends: Hackers Breach Public School Databases, Send Out Threatening Texts
. “Parents of children in an Iowa school district were left severely concerned after they received SMS messages from an unknown person or persons threatening to kill students at their childrens’ schools. The messages were doubly worrying because they contained personal details about the children, all because hackers had stolen the information from a school network.”
Hindu Business Line: Data of over 6,000 Indian organisations up for sale on Darknet, says Quick Heal. “Quick Heal Technologies’ enterprise security solutions unit has disclosed that it has discovered an advertisement on Darknet announcing secret access to the servers and database dump of over 6,000 Indian businesses — including ISPs, government and private organisations. The hacker has priced the information at 15 Bitcoins and is offering network takedown of affected organisations for an unspecified amount, it added.”