Skip to content

Gotham Security Daily Threat Alerts

by on February 19, 2014

February 18, Help Net Security – (International) Linksys announces firmware fix to neutralize “The Moon” worm. Linksys announced that they were aware of “TheMoon” malware targeting its older routers and are working on a firmware fix, but advised administrators and users to Disable Remote Administration of their devices in order to protect themselves from the attack. Source:

February 17, Help Net Security – (International) Kickstarter suffers data breach. Kickstarter notified users that their user information was accessed following a data breach. The company closed the security vulnerability and began strengthening security measures on their systems, but recommended users change their passwords. Source:

February 17, Help Net Security – (International) SEA hacks Forbes, steals and leaks 1M user records. The Syrian Electronic Army hacking group is believed to be behind a digital attack of the Forbes Web site and its registered users after more than 1 million user and staff records were obtained. The information was made available for public download and Sophos researchers discovered that passwords could potentially be cracked after learning they were salted and hashed, not encrypted. Source:

February 15, Softpedia – (International) GitHub fixes RCE and 2FA brute-force vulnerabilities. GitHub fixed an SSH Git remote command execution (RCE), a two-factor authentication (2FA) brute-force, and a MySQL typecasting authentication bypass vulnerabilities after a researcher from Phonoelit identified and reported them to the company. Source:

February 18, Softpedia – (International) Hackers show they’ve stolen 828 Gb of data from systems of Las Vegas Sands. Las Vegas Sands Corp., restored its casino Web sites after a security breach forced the company to shut down its online operations for several days. The hacker group, Anti WMB Team, published a video demonstrating that 828 gigabytes of files including budget information, IT department and network information, and user data was stolen during the breach.  Source:

From → Uncategorized

Comments are closed.

%d bloggers like this: