Skip to content

Gotham Security Daily Threat Alerts

by on January 28, 2014

January 27, IDG News Service – (International) Suspected email hackers for hire charged in four countries. Five suspects in Arkansas, New York, and California were charged with allegedly hacking into email accounts or hiring others to do so. The arrests were part of an international law enforcement operation that also resulted of the arrests of six others in China, India, and Romania. Source.

January 27, Softpedia – (International) GitHub down due to DDoS attack. GitHub reported coming under a distributed denial of service (DDoS) attack January 27 that prevented users form accessing some services. Source: http://news.softpedia.com/news/GitHub-Down-Due-to-DDOS-Attack-1-27-2014-421114.shtml

January 27, Help Net Security – (International) Hasbro’s website compromised, serves malware. Researchers at Barracuda Labs found that the Web site of toy maker Hasbro was compromised and would lead users through several redirects to a malicious Web site hosting Java exploits that would attempt to infect systems with an information-stealing trojan that was not initially detected by antivirus programs. Users who visited the site January 10, 11, 14, and 20 were likely to have been infected. Source: http://www.net-security.org/malware_news.php?id=2689

January 27, Softpedia – (International) Mozilla fixes Thunderbird flaw that allowed hackers to insert malicious code into emails. Mozilla confirmed that it fixed a vulnerability in its Thunderbird email client reported in May 2013 that could have allowed attackers to bypass security controls and filters. Source: http://news.softpedia.com/news/Critical-Validation-and-Filter-Bypass-Vulnerability-Fixed-in-Thunderbird-420962.shtml

January 27, Softpedia – (International) Expert finds remote code execution vulnerability in Yahoo server. A security researcher reported a PHP code injection vulnerability found in a Yahoo server that he was able to escalate to a remote code execution vulnerability. The vulnerability was then closed January 21. Source: http://news.softpedia.com/news/Expert-Finds-Remote-Code-Execution-Vulnerability-in-Yahoo-Server-Video-420896.shtml

January 26, IDG News Service – (International) Microsoft says law enforcement documents likely stolen by hackers. Microsoft stated that documents related to law enforcement inquiries were stolen during recent phishing attacks against the company. Source.

January 25, Softpedia – (International) Vulnerability that allowed hackers to hijack Samsung.com accounts fixed. Samsung closed a vulnerability reported by a researcher that could have allowed an attacker to take over a user’s Samsung.com account by registering an account with extra spaces on the end of the username. Source: http://news.softpedia.com/news/Vulnerability-that-Allowed-Hackers-to-Hijack-Samsung-com-Accounts-Fixed-Video-420630.shtml

January 24, IDG News Service – (International) Gmail, other Google services hit by outage on Friday. A software issue in a Google system left Gmail and other Google applications unavailable for around 30 minutes to 2 hours January 24. Source: http://www.networkworld.com/news/2014/012514-gmail-other-google-services-hit-278072.html

January 25, Softpedia – (National) Operators of credit card counterfeiting service Fakeplastic.net charged. Three men were charged in the Western District of North Carolina federal court with allegedly running the Fakeplastic.net Web site that sold fraudulent credit cards and credit card-making materials, causing over $34.5 million in losses. Eleven other individuals were also arrested for allegedly being customers of the site. Source: http://news.softpedia.com/news/Operators-of-Credit-Card-Counterfeiting-Service-Fakeplastic-net-Charged-420645.shtml

January 25, Reuters – (National) U.S. retailer Michaels warns of possible payment card breach. Arts and crafts retailer Michaels Companies Inc., stated January 25 that it is investigating a possible payment network security breach and advised customers to monitor their financial statements for suspicious activity. Source: http://www.reuters.com/article/2014/01/25/us-michaels-databreach-idUSBREA0O0N320140125

From → Security

Comments are closed.

%d bloggers like this: