In this article we will try to cover the most exciting incidents, occurred in July 2016. Our rating is based solely on our perception of security and publicly known events.
So, here we go:
1. DataDog leak
DataDog reported a security incident involving unauthorized access to their infrastructure. The hackers were able to access users’ credentials on several production servers. According to report, hackers were trying to use obtained information in password reuse attack against Amazon Web Services.
2. Espionage campaign against Russia
Russian secret service FSB discovered espionage campaign against Russian government and military institutions. The initial report states that hackers where able to infiltrate computer networks of around 20 Russian government and military institutions, military contractors and other companies from critical infrastructure sector.
3. Yet another DNC hack
Reuters reported on July 29 another hacking attempt against US Democratic National Committee. This time attack was launched against Democratic Congressional Campaign Committee. The investigators believe, the goal of the attack was to gather information about donors, who support Democrats running for seats in the U.S. House of Representatives.
The amount of exposed information is not clear, however it may include a variety of personal information, such as names, email addresses and credit card details, used for making contributions.
4. Amazon Kindle hack
Hacker who goes under name 0x2Taylor revealed personal information about 80 thousand Amazon Kindle users, after the company refused to pay $700 bounty for his discovery. The information includes names, phone numbers, street addresses, IP-addresses, passwords, etc.
5. Wendy's hack
More than one thousand Wendy's restaurants fall victim to malware infection. Hackers were able to install malware on PoS-terminals in 1024 restaurants. The incident occurred last year, but the company reported it only in May 2016, stating that PoS-terminal in only 300 restaurants were infected. On July 7 the company made another statement, updating previous information.
6. O2 data leak
Personal information of British O2 customers was sold on dark net. According to BBC, the hackers were able to access O2 customer accounts using credentials from previous breach of XSplit website. All the O2 account holders whose details the BBC has seen have been informed, with many saying they had used the same login for other online accounts.
7. Redis database exposure
Experts from Risk Based Security used Shodan search engine to discover 6,338 compromised Redis servers. Terabytes of various data were stolen from multiple databases. All compromised servers were using old version of Redis, which has not authentication mechanisms.
8. Anonymous attack on Turkish Izmir Gaz
Anonymous underground movement launched attack against Turkish energy company Izmir Gaz. Instead of usual DDoS, this time hackers were able to steal financial and personal information, hashed passwords of 479 users. The stolen data included also technical reports, financial information about expenses and available bank accounts.
9. Android malware
Researchers from ESET discovered widely-spread malware infection via legitimate applications from Google Play. Hackers uploaded 8 applications for social networks, bypassing Google checks and used them to steal credentials and money. According to researchers, these applications were downloaded and installed by almost 1 million Android users.
10. Clash of Kings hack using vulnerability in vBulletin
Hackers were able to compromise forum of a popular game and steal database containing 1,597,717 records. The stolen information includes usernames, hashed passwords, email addresses, IP-addresses and Facebook access tokens.
The forum was running on an old version of vBulletin, which contains multiple security vulnerabilities.
