Archive for 2014-03-02
Hacker breaches Johns Hopkins University website
By : Unknown
The database server contains information of current and
former biomedical engineering students.
The stolen information includes name, phone number and email id of
students.
The University says no information such as Social Security
numbers and credit card numbers that would make identity theft a concert, is
not involved in the breach.
According to the Baltimore Sun, the so-called anonymous
hacker attempted to extort the university for further access to its database
server, threatening to leak the stolen data unless university handed over the
server password.
The breach reportedly occurred in last November, the
vulnerability responsible for the breach has been patched. The University is currently working with FBI
and trying to remove the leaked data from online.
Apple’s iPhone 5S tracks your every physical movement even after the battery dies
By : Unknown
Something serious about your privacy revealed in public by
an user of Apple iPhone 5S, right now you just know-Apple has a motion
co-processor called M7 Chip that tracks of your motion related data derived
from the integrated accelerometer, gyroscope and compass sensors but you know
if your ever died then-still all of your data collected by the M7 Chip.
The fact is when iPhone’s battery shuts down due to low
battery, actually the battery isn’t completely drained. M7 designed to work in
very tiny power also. So M7 analyzes your every physical activity even if the
your battery dies.
M7 processor works
independently , so it doesn’t need any other components on the iPhone to
be powered on.
This Privacy stuff revealed by a Reddit user, who wrote:
While traveling abroad, my iPhone cable stopped working so
my 5s died completely.
I frequently use Argus to track my steps (highly recommended
if you have any health bands or accessories) since it takes advantage of the M7
chip built into the phone.
Once I got back from my vacation and charged the phone, I
was surprised to see that Argus displayed a number of steps for the 4 days that
my phone was dead.
I’m both incredibly impressed and slightly terrified.
M7 only analyze physical activity, not your actual location.
Share and Enjoy
European Apple users targeted with phishing emails
By : Unknown
A new phishing campaign targeting European users of Apple
store which promises to offer a discount.
Security researchers at Kaspersky have spotted a new spam
mail targeting Apple users, tricks users into thinking that they can get
discounts of 150 euros by just paying 9 euros.
"Apple is rewarding its long-term customers. Your loyalty for our products made you
eligible for buying an Apple discount card" The spam mail reads.
The spam mail asks users to download an attached HTML file
and fill the form, where users are being asked to enter personal information as
well as credit card information.
The scammers spoofed the email address such that it makes
the email pretending to be from informs@apple.com. They also promised to send the discount card
within 24 hours, after filling the form.
If a recipient follows the instructions and fill the form,
the phishing file will send the data to the attacker server. The attacker will use the given financial data.
World’s Biggest Cyber Attack-360 Million email accounts credentials, 1.25 billion email addresses
By : Unknown
Do you know?-More than 360 Million accounts credentials and
around 1.25 billion email addresses are put up on sale on the online Black
Market by Hackers worldwide.
This is the world’s biggest cyber attack ever.
A company in London named ‘Hold Security’ researched and
found this huge size of data .
Only one of the hacker attack stole more than 105 million
records, which is a single largest data breach in the history.
“These credentials can be stolen directly from your company
but also from services in which you and your employees entrust data. In October
2013, Hold Security identified the biggest ever public disclosure of 153
million stolen credentials from Adobe Systems. One month later we identified
another large breach of 42 million credentials from Cupid Media,” the firm
said.
The firm took three weeks to collect the data. Firm tracked
over 300 million abused credentials that were not disclosed publicly (that is
over 450 million credentials if one counts the Adobe find).
“But this month we exceeded all expectations. In the first
three weeks of February we identified nearly 360 million stolen and abused
credentials and 1.25 billion records containing only email addresses. These
mind boggling numbers are not meant to scare you and they are a product of
multiple breaches which we are independently investigating. This is a call to
action,” it added.
“The sheer volume is overwhelming,” said Alix Holden, chief
information security officer of Hold Security.
Email addresses include all the major providers like Google,
Microsoft and Yahoo. Many non-profit organizations and all Fortune companies
had been affected.
This is the biggest data breach after the Adobe one.
Share and Enjoy