300K Leaked Data Goldmine for Scammers Amazon Shopify | efani SAFE

Security researchers have found a misconfigured cloud-hosted database leaking over 300,000 records, including sensitive personal information on e-commerce buyers. A team at Safety Detectives found the leaky Elasticsearch database on July 25 this year but claimed the content had been exposed without any password protection or encryption since November 2020. Its efforts to close the […]
Language Pattern Analysis to Detect Social Network Attacks

Sontiq BreachIQ Data Breach Report: Week of Nov. 22 · Is Ransomware a Technology Pandemic in the Making? 8 Security Developments to be Thankful Attacks by scammers appear to make sophisticated use of language ideology to abuse trust relationships. Language that indexes Africans allows perceived âauthenticityâ to be constructed in a way that breaks down […]
Hackers hit Robinhood (HOOD) Biggest Brokerage Vishing Attack | efani

Vishing attack update: The call was coming from inside the company. Or so it seemed when the mobile phone of a customer-service representative for Robinhood Markets Inc. lit up on the evening of Nov. 3, 2021. More than an hour passed and the conversation went on and on. The caller reeled in the hapless employee. […]
Roblox Suing Player $1.6 million Fraud Breach Contract | efani Partner TheNFG.com

The lawsuit claims YouTuber leads a “cybermob” that terrorizes Roblox and its staff, seeks $1.6 million in damages Roblox has filed a lawsuit against a player who was permanently banned from its platform, claiming he has been harassing and threatening both the company’s staff & events. The complaint was filed in the Northern District of […]
efani | Crypto Cell Phone SIM Port Hijacking Identity Theft

SIM/PORT SWAP IDENTITY THEFT âSIM swappingâ (also known as âSIM hijackingâ) is a growing crime and form of identity theft in the telecommunications world that requires little more than a thorough Google search, a willing telecommunications carrier representative, and an electronic or in-person impersonation of the victim. To perpetuate the theft, the cellphone service provider […]
efani.net News | T-Mobile to Settle 2020 Outage for $19.5 Million

T-Mobile USA agreed to settle a U.S. probe for $19.5 million after a massive 2020 outage led to more than 20,000 failed 911 emergency calls. The settlement was prompted by a Federal Communications Commission investigation into a more than 12-hour outage in June 2020 that led to congestion across No. 3 wireless carrier T-Mobileâs networks, […]
efani.net | 3 Quad-Cities municipalities victim to cyber attacks

Scammers pretending to be Brandt Construction emailed a city of Rock Island accountant to update automatic payment information. After the fraudsters returned a form, the accountant called their company contact to confirm, following the city’s usual practices, only to discover it was fake. Scammers, that time, weren’t paid. In Bettendorf, the cityâs human resources director […]
efani | Vestas Wind Systems has reported a data breach

Vestas Wind Systems has reported a data breach against its corporate IT systems that caused shutdowns across its business units. Vestas Wind is gradually opening up its IT systems in the wake of shutdowns last Friday to contain the damage. Danish Vestas Wind Systems, manufacturer, seller, installer, and servicer of wind turbines, which has recently […]
efani | United Health Centers of the San Joaquin Valley Data Breach

United Health Centers of the San Joaquin Valley announced on Friday it was the victim of a data breach incident that apparently began in August. The Fresno-based federally qualified health center has a couple of dozen clinics in the Central Valley. The system delivers about 200,000 medical, dental, and other service encounters per year. On […]
Catphishing Fake LinkedIn profiles| efani Partner TheNFG.com

Identity theft. Catphishing in LinkedIn. Singapore fines travel service for a data breach. Fake LinkedIn profiles: too real to be true. Intelligence blogger @hatless1der discovered an operation in which fraudsters are taking advantage of the implicit trustworthiness of the professional networking platform LinkedIn. Scammers create profiles that seem aboveboard at first glance by using AI-created […]
efani | GoDaddy NYSE: GDDY Breach Leaks 1.2 Million WordPress Customers Data

Web hosting company GoDaddy Inc (GDDY.N) said on Monday email addresses of up to 1.2 million active and inactive Managed WordPress customers had been exposed to unauthorized third-party access. The company said the incident was discovered on Nov. 17 and the third party accessed the system using a compromised password. “We identified suspicious activity in […]
efani | How to Protect Yourself From SIM-Swapping Attacks

You think youâre making all the right moves. Youâre smart with your security. You have two-factor authentication enabled on all your accounts. But hackers have a way to bypass that: SIM swapping. Itâs a devastating method of attack with dire consequences for those who fall victim to it. Fortunately, there are ways to protect yourself. […]
efani 6 million Sky Routers Eexposed to Attacks for 17 Months

Around six million Sky Broadband customer routers in the UK were affected by a critical vulnerability that took over 17 months to roll out a fix to customers. The disclosed vulnerability is a DNS rebinding flaw that threat actors could easily exploit if the user had not changed the default admin password, or a threat […]
efani | $700k – 159.8 ETHEREUM Tokens Stolen by SIM Swap Scammers

AT&T Sued After SIM Swapping Attack Causes Customerâs $700k Cryptocurrency Loss September 10th, 2020 was a day a Texas resident suffered what is known as a SIM Swap hack. A suit was filed against mobile carrier AT&T for violations of state law on September 5th, 2020. The complaint accuses AT&T Inc. of failing to safeguard […]
efani US Regulators Order Banks Report Cyberattacks in 36 hours

US federal bank regulatory agencies have approved a new rule ordering banks to notify their primary federal regulators of significant computer-security incidents within 36 hours. Banks are only required to report major cyberattacks if they have or will likely impact their operations, the ability to deliver banking products and services, or the US financial sector’s […]
efani T-Mobile Proposed Privacy Class Action Paused by Federal Judge

Cases on ice until Judicial Panel on Multidistrict Litigation rules · Telecom giant accused of negligence after suffering a data breach. Two proposed privacy class actions against T-Mobile US Inc. were put on ice after a Washington federal judge found that pausing those cases would conserve judicial and party resources. The cases have been stayed […]
Canadian Teen Arrested for SIM Swap That Looted $36 Million | efani SAFE?

Canadian police say the incident is ‘currently the biggest cryptocurrency theft reported from one person. Police in Canada arrested a local teenager for stealing US$36 million in cryptocurrency from a single victim through a SIM-swapping attack. On Tuesday, the Hamilton Police Service in Ontario reported it had arrested the unnamed âyouthâ following a joint investigation […]
MNG Kargo Hacked: User Information Stolen | efani SAFE?

MNG Cargo, which has a wide transportation network in our country, announced that some of its corporate customers were attacked by cyber attacks as a result of their user names and passwords being seized. Notifying the Personal Data Protection Authority, the company announced that the names, surnames, addresses, and phone numbers of the cargo recipients […]
efani.net News | 500,000 Utahns’ sensitive information possibly hacked

More than 500,000 Utahnsâ sensitive information was possibly hacked More than 500,000 Utahns may have had their information hacked through a data breach reported to the federal government. Utah Imaging Associates, Inc. (UIA), a Farmington-based radiology medical practice, learned that a hacker gained access to sensitive personal information of former and current patients. A hacker […]
Twitter NASDAQ: (TWTR) CEO Jack Dorsey targeted by SIM swap | efani

How Twitter attacks probably happened One day in 2019, Jack Dorsey started sending out a string of bizarre tweets. Jack’s followers knew his account had been compromised. What was less obvious to more than 4 million followers was how attackers took control of the Twitter CEOâs account for almost 20 minutes. Twitter reported hackers had […]
Nvidia Inc. NASDAQ NVDA CEO Omniverse | efani SAFE?

Jensen Huang, Nvidiaâs CEO, believes virtual 3-D worlds will be commonplace in the next phase of the internet and, as a result, drive major demand for the chipmakerâs new Omniverse software and its GPUs. âHopefully one of these days â weâll try to realize it as fast as we can â every transaction that goes […]
Bitcoin BTC Freefall to $56k down $1.2k off $68k high | efani SAFE?

There have been few investment assets as controversial as Bitcoin (and other cryptocurrencies). Few, if any, took them seriously when they came out in 2009. The early adopters used to trade it for free between them, and it was offered as âconsolation prizesâ in some early online competitions. 2021 has been great for this crypto […]
efani Amazon NASDAQ: AMZN Dark Secret Failed to Protect Your Data

Amazonâs Dark Secret: It Has Failed to Protect Your Data On September 26, 2018, a row of tech executives filed into a marble- and wood-paneled hearing room and sat down behind a row of tabletop microphones and tiny water bottles. They had all been called to testify before the US Senate Commerce Committee on a […]
Do you know where your data sleeps at night? | efani SAFE?

The key steps to securing your data and giving it a new home on-premise. Any business that has been around for more than a few years will have generated quite a lot of data. And as the business grows, so too does the number of different devices and applications that are storing data, including personal […]
efani | Fortinet Hack Microsoft NASDAQ: MSFT Vulnerabilities

US, UK warn of Iranian hackers exploiting Microsoft Exchange, Fortinet US, UK, and Australian cybersecurity agencies warned today of ongoing exploitation of Microsoft Exchange ProxyShell and Fortinet vulnerabilities linked to an Iranian-backed hacking group. The warning was issued as a joint advisory released by the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of […]
efani.net News | Rittenhouse lawyers ask judge for mistrial 3rd time

Kyle Rittenhouse’s attorneys asked the judge to declare a mistrial even as the jury in the murder case was deliberating Wednesday, saying the defense received an inferior copy of a potentially crucial video from prosecutors. Judge Bruce Schroeder did not immediately rule on the request, the second mistrial motion from the defense in a week. […]
NASDAQ: CPKI California Pizza Kitchen Data Breach | efani SAFE?

California Pizza Kitchen Data Breach Exposes Personal Information: Murphy Law Firm Investigates Victims’ Legal Claims Murphy Law Firm announces its investigation into claims on behalf of individuals whose information was compromised in the California Pizza Kitchen data breach. On or about September 15, 2021, California Pizza Kitchen discovered suspicious activity on its computer systems. By […]
TikTok $92M data breach settlement | efani SAFE?

TikTok agrees to $92M data breach settlement: Users are in for a payday Millions of TikTok users may be eligible for a payout after TikTok agreed to a $92 million settlement in light of lawsuits over user privacy. TikTok users may be eligible for a share of $92 million after the social media company agreed […]
Survey 20% of Defense Contractors Risk Attack | efani SAFE?

A survey featuring some of the United States’ top defense contractors suggests that about 20% of them are âhighly susceptibleâ to a ransomware attack, with 42% having experienced a data breach in 2020 alone. This data comes from Black Kite, a cybersecurity research firm. Survey respondents included defense contractors working in financial services, health care, […]
Alibaba NYSE: BABA ECS instances targeted Cryptojacking | efani SAFE?

Alibaba ECS instances targeted in new cryptojacking campaign Hackers have been found attacking Alibaba Cloud Elastic Computing Service (ECS) instances to mine Monero cryptocurrency in a new cryptojacking campaign. Security researchers at Trend Micro discovered cybercriminals disabling security features in cloud instances so that they could mine for cryptocurrency. ECS instances come with a preinstalled […]
efani.net News | Vulnerabilities in GitHub NPM packages malicious versions

GitHub fixed serious npm registry vulnerability, will mandate 2FA use for certain accounts GitHub has fixed a serious vulnerability that would have allowed attackers to publish new, malicious versions of any existing package on the npm registry. About the fixed vulnerability The vulnerability, flagged by security researchers Kajetan Grzybowski and Maciej Piechota, existed because several […]