article thumbnail

Kaseya Left Customer Portal Vulnerable to 2015 Flaw in its Own Software

Krebs on Security

Also on July 3, security incident response firm Mandiant notified Kaseya that their billing and customer support site — portal.kaseya.net — was vulnerable to CVE-2015-2862 , a “directory traversal” vulnerability in Kaseya VSA that allows remote users to read any files on the server using nothing more than a Web browser.

Software 285
article thumbnail

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack

Krebs on Security

[This is Part III in a series on research conducted for a recent Hulu documentary on the 2015 hack of marital infidelity website AshleyMadison.com.] The CEO’s leaked emails show Eric Malek resigned from his developer position at Ashley Madison on June 19, 2015 — just four days before Bloom would announce his departure.

Hacking 186
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

OfflRouter Malware Ukraine: Govt Network Breach Since 2015

Security Boulevard

As per recent media reports, certain government networks in Ukraine have been infected with the Offlrouter malware since 2015. In the article, we will dive into the details […] The post OfflRouter Malware Ukraine: Govt Network Breach Since 2015 appeared first on TuxCare.

Malware 62
article thumbnail

Randstorm Exploit: Bitcoin Wallets Created b/w 2011-2015 Vulnerable to Hacking

The Hacker News

Bitcoin wallets created between 2011 and 2015 are susceptible to a new kind of exploit called Randstorm that makes it possible to recover passwords and gain unauthorized access to a multitude of wallets spanning several blockchain platforms.

Hacking 124
article thumbnail

The 7 Biggest Cybersecurity Scoops from February 2015

SiteLock

Fast forward to 2015, and we’ve had several trending cyber security issues appear in just these first few weeks. Below are 7 trending cyber security stories that you should read for February 2015. 2015 Cyber Security Risks. Anthem Cyber Attack. Read the full story here on Hot for Security. You can read it here.

article thumbnail

Researchers Uncover Hacker-for-Hire Group That's Active Since 2015

The Hacker News

A new cyber mercenary hacker-for-hire group dubbed "Void Balaur" has been linked to a string of cyberespionage and data theft activities targeting thousands of entities as well as human rights activists, politicians, and government officials around the world at least since 2015 for financial gain while lurking in the shadows.

article thumbnail

2015 Ashley Madison Breach Is Back Just in Time for Valentine’s Day

Adam Levin

A new extortion scam is targeting users of marital infidelity site Ashley Madison whose accounts were compromised in a 2015 data breach. The post 2015 Ashley Madison Breach Is Back Just in Time for Valentine’s Day appeared first on Adam Levin. It is currently unknown if users targeted by the breach have been exposed.