TL17HXR
Latest
Hackers leak HBO episodes, 'Game of Thrones' info online
Netflix isn't the only video service suffering form a hack: HBO has been breached as well. Hackers have gotten their mitts on 1.5 terabytes of data according to Entertainment Weekly, which apparently includes an episode of Ballers and Room 104 in addition to what may or may not be text related to next week's Game of Thrones installment. The hackers promise more will be leaked.
'Rime' goes DRM-free after hackers crack the game in days
That didn't take long. Rime developer Tequila Works promised earlier this week that it would remove Denuvo, the anti-tampering/DRM system on the Windows version of Rime, if someone cracked it. Just five days later, and that's already happened and the makers have already released an update that's DRM-free. Interestingly, the developer tweeted saying its publisher was the one promising to make the game DRM-free if cracked. The tweet has since been deleted.
Chipotle finds malware exposed credit card info across the US
Hackers stole credit card information from customers at Chipotle restaurants across the United States between March 24th and April 18th, the company announced today. Chipotle revealed in April that it had been the victim of an attack, and today it shared details about the type of information stolen from customers, which covered "cardholder name in addition to card number, expiration date, and internal verification code." No other information was compromised, Chipotle said.
HipChat resets all passwords after hackers break in
Today, Hipchat alerted its users that someone broke into one of its servers through a vulnerability in a third-party library. The chat service saw no evidence that other Atlassian systems or products like Jira or Trello were affected, but they're forcing every user to reset their HipChat-connected account password as a precaution.
Yahoo hackers accessed 32 million accounts with forged cookies
In a regulatory filing, Yahoo revealed some additional details about data breaches that have affected over a billion accounts. Among that information is the news that hackers who obtained Yahoo's code and were able to create their own cookies were able to access 32 million accounts through 2015 and 2016. Additionally, the 10-K statement provided to the SEC says that Yahoo notified 26 individuals and consulted with law enforcement after it became aware that state-sponsored hackers had exploited its account management tool for access.
Spyware targeted proponents of Mexico's soda tax
Surveillance-oriented spyware is dodgy in itself, but it's even worse when it's abused to intimidate political enemies -- just ask Mexican health advocates. The New York Times has learned that someone used commercial spyware from NSO Group to target proponents of Mexico's soda tax, including researchers and activists, right as they were rallying support for doubling the tax. The attackers sent personalized messages that warned of bogus news (say, a daughter's accident) and urged the victims to tap a link. If they did, the hostile would infect their devices and track everything from messages to location. It'd even quietly record camera footage.
San Francisco MUNI hacker was hacked
Over the weekend, San Francisco's transit system was hacked by an individual (or group) going by the name Andy Saolis. The attack forced the city to offer Muni rides for free while its staff raced to rectify the breach on its servers. But while Saolis was threatening to expose gigabytes of data if his ransom wasn't paid, they were the subject of a hack themselves. An anonymous individual contacted Krebs on Security, claiming to have breached Saolis' email and found out a few clues as to their identity.
Hackers dump stolen Ashley Madison data onto the Dark Web
Impact Team, the hacking collective that recently made headlines by absconding with the personal data of some 37 million customers, has made good on previous threats to release the information. On Tuesday, the group dumped 9.7 GB worth of data onto the Dark Web, a semi-anonymized corner of the Internet only accessible using a special Tor browser and Onion router. The data set appears to include account details and log-ins as well as credit card and payment transaction details. The hackers reportedly pulled the data from Ashley Madison's servers despite the company offering a $19 "Full Delete" service that supposedly scrubbed former users' data from the site.
