2015-11-21

Health Insurer Excellus: Attackers Breached 10M Records

Excellus has revealed that in August of this year it discovered a nearly 2-year old intrusion campaign in its network that gave hackers access to potentially all its customers’ records. That data includes names, birth dates, Social Security numbers, mailing addresses, telephone numbers, and a variety of account information including claims and financial payment details. 
Full Story 

2015-11-20

Aviva Employee Sells Customer Data

A letter sent by Aviva to its customers:

"I am writing to make you aware that Aviva has identified that information about a motor claim which you were involved in may have been accessed and passed to a third party without Aviva's consent. We have dismissed the employee concerned and reported this to the police and the Financial Conduct Authority."
Story here

Tool: KeeFarce

KeeFarce allows for the extraction of KeePass 2.x password database information from memory. The cleartext information, including usernames, passwords, notes and url's are dumped into a CSV file in %AppData%
Details here

2015-11-16

ProtonMail DDoS Extortion

the service was extorted by one group of attackers, then taken offline in a large distributed denial-of-service (DDoS) attack by a second group that it suspects may be state sponsored.
Full Story

2015-11-11

Biggest cyber heist in history

How JP Morgan (and others) got hacked, and the story behind pump-n-dump scheme of hackers. And hackers caught.

2015-11-02

Introducing Tor Messenger

Much welcomed! Client currently supports:

  • Jabber (XMPP) chat protocol
  • IRC (Internet Relay Chat)
  • Facebook Chat
  • Google Talk
  • Twitter
  • Yahoo!

 Details here