TweakTown
Tech content trusted by users in North America and around the world
6,250 Reviews & Articles | 40,784 News Posts
TRENDING NOW: Rockstar rumored to announce Grand Theft Auto: San Andreas 2 soon

TweakTown News

Refine News by Category:

Hacking & Security Posts - Page 84

Mobile DDoS attacks on the rise, with companies on alert

The use of distributed denial-of-service (DDoS) attacks typically target servers and hit PC users, but DDoS attacks are increasing from mobile users.

 

TweakTown image news/3/5/35943_01_mobile_ddos_attacks_on_the_rise_with_companies_on_alert.jpg

 

Attacks typically rely on covertly-installed malicious apps that are able to use hardware and software on the device to contribute to the DDoS network.

 

The prevalence of mobile apps also provides cybercriminals an increased opportunity to compromise devices which can be remotely hijacked.

 

"The denial of mobile phone usage will create havoc and blowback to those perceived as responsible, which may be the companies involved because they didn't prevent the attack," said Ray Van Dyke, principal at Van Dyke Law, in a statement to The Mobility Hub.

Continue reading 'Mobile DDoS attacks on the rise, with companies on alert' (full post)

City of Detroit hit by data breach, former and current employees hit

Detroit city officials confirmed as many as 1,700 current and former city workers are at risk following a data breach that targeted "personal identifying information."

 

TweakTown image news/3/5/35938_01_city_of_detroit_hit_by_data_breach_former_and_current_employees_hit.jpg

 

"Our initial investigation shows not like many other places, it was malware that came through e-mail and somebody clicked a link," said Beth Niblock, the city's chief information officer, told CBS Detroit. "The malware locks files indiscriminately - it doesn't know what it's doing... it doesn't know the nature of the information in the files and really the purpose of that is just to really lock the files and make it inaccessible."

 

It's possible the city mistakenly installed some type of "ransomware," such as Cryptolocker, which encrypts files - or carries out another harmful task - and demands payment before files are decrypted. Typically, an ideal solution is to improve anti-malware defenses and restore from a previous backup, which the city IT team hopefully did somewhat recently.

Continue reading 'City of Detroit hit by data breach, former and current employees hit' (full post)

Netflix phishing scam tricks subscribers to steal data from their PC

There's a new phishing scheme which involves Netflix and using the fear of having your account suspended unless you call the company's 'tech support'. Jerome Segura of Malwarebytes Unpacked uncovered 'Tech Support' scammers where they try to use Netflix account suspicion scare to steal its victims' photos, name, address, passwords and even credit cards.

 

TweakTown image news/3/5/35924_1_netflix_phishing_scam_tricks_subscribers_to_steal_data_from_their_pc.png

 

Segura said that the error from Netflix urged him to call the 1-800 number on the screen, which was not the official support number and therefore prompted deeper investigation. Upon contacting the fake tech support, the representative made him download a 'Netflix Support Software' which turned out to be Teamviewer. After the remote connection was made, the scammer said that his account was suspended because of 'illegal activity' and showed 'proof' using a 'Foreign IP Tracer' which was a custom-made Windows batch script.

Continue reading 'Netflix phishing scam tricks subscribers to steal data from their PC' (full post)

Popular event notification site, Meetup, down for days due to DDoS

Meetup is one of those websites that almost everyone has used at some point, and with more than 12 years of an online presence it is no surprise that many have grown to depend on the service for spreading the word about their meetings. Unfortunately for the last several days, Meetup has been experiencing a massive Distributed Denial of Service attack (DDoS) that has crippled its servers and rendered the service unusable.

 

TweakTown image news/3/5/35934_1_popular_event_notification_site_meetup_down_for_days_due_to_ddos.jpg

 

While the attack lessens from time to time, I have only noticed the service up twice over the last 4 days with it being back down within an hour of it coming back online. The attack is non political, and is purely designed to extort money from the company behind Meetup. An email arrived in CEO, Scott Heiferman's, inbox shortly after the attack began that read; "A competitor asked me to perform a DDoS attack on your website. I can stop the attack for $300 USD. Let me know if you are interested in my offer."

 

Meetup chose not to pay the extortionist even though the amount demanded was extremely small as it has a policy not to negotiate with criminals. At the time of this writing Meetup was back up, but has been down on and off for most of the day. The company says that it is working on restoring stability, and hopes that things will return to normal shortly.

Security company FireEye lists most targeted countries, industries

PC and mobile users are under constant threat from increasingly advanced types of malware, with attack servers handing out malware attack commands in 206 countries across the world, according to security company FireEye.

 

TweakTown image news/3/5/35929_01_security_company_fireeye_lists_most_targeted_countries_industries.jpg

 

The United States, South Korea, Canada, Japan, and United Kingdom lead all countries targeted with advanced persistent threats (APTs). The government, services/consulting, and technology verticals most targeted, as cyberattacks are increasingly used to spy on rivals and steal information.

 

"The increasing frequency at which cyber attacks are happening illustrates the allure of malware to those with malicious intentions," said Dr. Ken Geers, FireEye senior global threat analyst, in a press statement. "Across the board, we are seeing a global expansion of APTs, malware, CnC infrastructure, and the use of publically available tools to facilitate the attack process. The global scale of threat has put cyber defenders in the very difficult position of not having any clue where the next attack will come from."

Continue reading 'Security company FireEye lists most targeted countries, industries' (full post)

Sands casino hit with cyberattack, customer and employee data stolen

Customers at the Las Vegas Sands Corp. are at risk from a successful data breach on February 11, which stole customer Social Security and driver's license numbers, credit card and bank account information, and other confident information, the company said. Specifically, the breach hit the Sands location in Bethlehem, Pennsylvania, and it doesn't appear any other Sands locations were hit by the cyberattack.

 

TweakTown image news/3/5/35919_01_sands_casino_hit_with_cyberattack_customer_and_employee_data_stolen.jpg

 

The casino didn't disclose how many customers were affected by the data breach, though impacted customers have been contacted. Following the breach, it took the casino almost one week to fix its defaced website, remove sensitive employee data, and relaunch the site.

 

From the company's website:

 

"We have determined that some employee and customer data at our Sands Bethlehem property has been compromised. We are committed to ensuring the security of all data that our guests and team members entrust to us, and are providing free credit monitoring and identity theft protection service through Experian to identified customers by the data breach."

 

TweakTown image news/3/5/35919_01_sands_casino_hit_with_cyberattack_customer_and_employee_data_stolen.jpg

 

The casino didn't disclose how many customers were affected by the data breach, though impacted customers have been contacted. Following the breach, it took the casino almost one week to fix its defaced website, remove sensitive employee data, and relaunch the site.

 

From the company's website:

 

"We have determined that some employee and customer data at our Sands Bethlehem property has been compromised. We are committed to ensuring the security of all data that our guests and team members entrust to us, and are providing free credit monitoring and identity theft protection service through Experian to identified customers by the data breach."

Continue reading 'Sands casino hit with cyberattack, customer and employee data stolen' (full post)

Outgoing NSA chief General Keith Alexander calls for reform

After being exposed by former IT contractor Edward Snowden last year, the NSA has the difficult task of trying to regain trust among the American people.

 

TweakTown image news/3/5/35909_01_outgoing_nsa_chief_general_keith_alexander_calls_for_reform.jpg

 

It's not impossible for the NSA and federal government to earn trust back, but without a sign of good faith, people will likely remain skeptical.

 

"I think we need to step back, set a framework for discussion with the American people," outgoing NSA chief Gen. Keith Alexander said during a recent Senate Armed Services Committee. "This is going to be absolutely important in setting up what we can and cannot do in cyberspace to protect this country. And from my perspective, that's going to be one of the big issues that we move forward. I think a precursor to that is getting the NSA issues resolved. We have to get those resolved because, ironically, it operates in the same space."

 

The NSA and President Obama's administration can promise reform and future changes, but it's likely a lot of people just believe the government will cover its tracks better. In addition to leaving the NSA with egg on its face, foreign governments accused of hacking and cybercrimes have leverage to say the U.S. cannot criticize anyone else.

Continue reading 'Outgoing NSA chief General Keith Alexander calls for reform' (full post)

Mt. Gox trying to make amends, sets up support call center for users

Bitcoin exchange service Mt. Gox plans to open up a call center to help customers as the company continues to deal with bankruptcy and 750,000 lost customer bitcoins.

 

TweakTown image news/3/5/35910_01_mt_gox_trying_to_make_amends_sets_up_support_call_center_for_users.jpg

 

After hackers successfully compromised the company's computer network, almost $500 million of bitcoins were stolen from Mt. Gox and its customers. Mt. Gox reportedly has around $31 million in assets, but now has $63.6 million in debt.

 

In a recent post on the Mt. Gox official website:

 

"A call center has been established to respond to all inquiries. The call center is planned to start on March 3, 2014. All inquiries to MtGox Co., Ltd. should be made to the following telephone number: Telephone number: +81 3-4588-3921. Working hours: Monday to Friday (10AM to 5PM) Japan Time"

Continue reading 'Mt. Gox trying to make amends, sets up support call center for users' (full post)

FTC: Identity theft was top consumer complaint in 2013

In a complex world, identity theft was the biggest consumer complaint in 2013, according to a new report from the Federal Trade Commission (FTC). In 2013 alone, the FTC received 290,016 consumer complaints regarding identity theft - capturing around 14 percent of all complaints the FTC received.

 

TweakTown image news/3/5/35911_01_ftc_identity_theft_was_top_consumer_complaint_in_2013.jpg

 

American consumers lost around $1.6 billion due to fraud-related activities last year, with the 20-29 age group reporting the highest number of incidents.

 

"Americans of all ages are vulnerable to identity theft, and it remains the most common consumer complaint to the Commission," said Jessica Rich, Bureau of Consumer Protection, in a statement. "We urge consumers to visit FTC.gov/idtheft for tips to prevent and mitigate the damage from identity theft."

Continue reading 'FTC: Identity theft was top consumer complaint in 2013' (full post)

Hackers compromised RT.com to replace the word 'Russian' with 'Nazi'

Russia's news website RT.com was recently compromised, and hackers have changes multiple articles with the word 'Russian' to 'Nazi'. Currently there's tension going between the country and Ukraine as Russia decides to move its troops towards the border and planning many military exercises.

 

TweakTown image news/3/5/35899_1_hackers_compromised_rt_com_to_replace_the_word_russian_with_nazi.png

 

The hack was reported at about 11 pm EST, which lead to changed in many news headlines such as 'Thousands rally again 'illegitimate govt', raise Nazi flags in eastern Ukraine' and 'up to 143,000 Nazis requested asylum in Russia in two weeks'.

Continue reading 'Hackers compromised RT.com to replace the word 'Russian' with 'Nazi'' (full post)

Latest News Posts

View More News Posts

Forum Activity

View More Forum Posts

Press Releases

View More Press Releases