In The Que, a RayFenster.com LLC

09/01/2023

Trump said he never felt his financial statements "would be taken very seriously,” and that people who did business with him were given ample warning not to trust them.

05/03/2023

Do you have a debt ceiling, well America does and we are over budget. Are your savings bonds insured by a bankrupt US government? Is it true the last administration increased the national debt 25%, more than any other previous administration.

08/11/2021

Google is introducing a new method of tracking you all over again, only not through cookies. This new AI-based system is called Federated Learning of Cohorts (FLoC).
Of course, most website owners want their sites to be easily found by users on Google. So thanks to indexing information and the various search engine optimization steps taken by site owners, Google generally knows a lot about the purpose and contents of websites.
FLoC is a super-tracker that will monitor your browsing activity across all sites and store this information on the Chrome browser. Based on this browsing behavior, it uses machine learning (ML) on the browser to generate your “cohort identity”. A SimHash algorithm generates “magic numbers” to analyze users’ interests and place them into groups (cohorts), made up of people who share similar interests.
Advertisers will be able to buy into these cohorts using the same ad bidding technology that Google uses already. So instead of being shown adverts based on your individual profile, you’ll get ads targeted at whichever cohort(s) you’ve been assigned to.

05/17/2021

Greetings, did you know that over 46% of adults do not have life insurance? When is the last time you had an expert financial analysis? This is a FREE service we provide.
My agency is looking for individuals that have an interest in the insurance business with or without being licensed agents?
Did you know that you can earn between $2,000 to $3,000 working part-time and full time usually a six-figure income? The financial service industry pays more than any other classification.
We make it easy for you to become an agent so you can maximize your time and earn money quickly.
This Thursday 7:00 pm eastern time zone a great live private zoom presentation https://experiorfinancial.zoom.us/j/82511183647
After you watch the presentation call me Ray at 301.922.8311
Thanks for being a friend, I would appreciate it if you would let me know if anyone you know might be interested.

04/15/2021

White Hat Hacker

01/30/2019

Digital technology plays a bigger part in our lives than we think. From simple messenger apps to smart home features, we use all kinds of digital tech every day. However, for all the amazing things we can do with the technology, we sacrifice some serious data in return.

Our lives are ultimately controlled by data we produce. This doesn't mean we're robotically controlled by robots. It simply means our personal data is used (often secretly) to sway aspects of our life.

The use of data is more than creepy ad targeting, it's often a violation of privacy. Consider Amazon's recipe for a smart home, complete with remotely controlled lights. The all-in-one security system lets you access your home via apps and voice commands. But then Amazon collects your activity data for who knows what.

Amazon has even launched a more intimate delivery system that only opens your door (or garage) for Amazon packages. Alarmed about letting a stranger into your empty home? Don't worry! Amazon sells smart locks you need to purchase for security that just happens to run on digital data.

Don't ignore the data
Despite the advent of data based technology, laws and policies have struggled to keep up with setting boundaries for unethical use of consumer data. We haven't even been able to identify the numerous security flaws we face, let alone the ways personal data is used. Global leaders recognize the need for global data governance but have been unable to reach a consensus.

But why is it so difficult to get any regulation? Because data is power and nobody wants to give that up. Governments are looking to create smart cities where people are tracked with facial recognition and geolocation. Companies want the ultimate competitive edge over the market, disregarding customer privacy.

Source: MarketWatch
The foundation to building power is your personal data. And in both scenarios, your identity, movements, and habits aren't protected. We're not even completely sure When a handful of large companies monopolize business and profit AND our data, we have no control over what happens.

Losing control
As consumers, we're at the mercy of these tech giants. We use apps and smart devices all the time. Even when we aren't using them, the technology is still there listening (like Alexa). All that data is then sold to other companies, usually without telling us.

The problem isn't just about privacy, it's also about control. If we can't decide how our personal lives are monitored, what freedom do we have? Our data is so valuable that hackers, businesses, and governments are after our livelihoods.

Facebook's plan to merge 3 major apps (Facebook Messenger, Instagram, WhatsApp) to let customers communicate across channels. But the forecast isn't good. The EU previously ruled data-sharing between WhatsApp and Facebook Messenger as illegal. Facebook is no stranger to illegal data scandals. Cambridge Analytica, a supposed political consulting firm, illegally obtained data from up to 87 million Facebook users. And until the scandal broke, we were none the wiser. By combining message data from 3 different apps, we can expect higher security risks. So what now?

Demand data
Because we rely so much on technology, we can't exactly stop the flow of data. People are already distrustful, but it's not enough to be careful when everything we do is data. One of the most dangerous things about our personal data is that we aren't educated on how it's used. How do we stay on top? Don't give them all the power. They aren't the only ones with data and analytics capabilities.

09/11/2018

Oil and gas industry 'needs to wake up to cyber threat from hostile states. Attacks on vital infrastructure could cause 'unprecedented damage' and 'unrest across the world', says former Deputy Director of GCHQ

Jack Peat
Friday 17 August 2018 20:25

A typical large oil and gas company uses half a million processors just for oil and gas reservoir simulation and stores petabytes of sensitive and competitive field data
A typical large oil and gas company uses half a million processors just for oil and gas reservoir simulation and stores petabytes of sensitive and competitive field data ( Getty )
The oil and gas industry should brace itself for the increased risk of cyber attacks from hostile states, the former Deputy Director of GCHQ has warned.

Brian Lord OBE said a successful attack on its infrastructure could cause “unprecedented damage” and “unrest across the world”.

With a complex ecosystem of computation, networking, and physical operational processes spread around the world, the industry has a large attack surface with many attack vectors.

01/18/2018

January 18, 2018

Cyber-attacks one of the biggest threats to the world in 2018 says WEF

Cyber-crime joins environmental disasters, large-scale involuntary migration and illicit trade as one of the most notable risks in the world this year, according to the latest Global Risks Report just brought out by WEF.

Cyber-attacks ranked alongside natural disasters

Cyber-crime joins environmental disasters, large-scale involuntary migration and illicit trade as one of the most notable risks in the world this year, according to the latest Global Risks Report just brought out by WEF.

The main issue globally, as with previous years, still remains as weapons of mass destruction, according to CNBC, which reported on the WEF Global Risks Report, however, now the next three most notable risks are environmental concerns because of how much damage they cause to land and property. To gather the top most notable risks for 2018 almost 1,000 global experts were surveyed on their views on what are the biggest risks to the world at the minute. The risks ranged in categories of technological, economical, societal, environmental and geopolitical.

The top five most likely events to happen this year globally, from most to least likely are: extreme weather events, natural disasters, cyber-attacks, data fraud or theft and failure of climate-change mitigation and adaptation. This definitely means that companies should pay attention and secure their systems so that they do not fall victim to attacks this year as cyber-attacks are considered so likely.

The top five most likely list however is slightly different to the list of the five events most likely to have the biggest global impact, they are: weapons of mass destruction, extreme weather events, natural disasters, failure of climate-change mitigation and adaptation and water crises.

Of the 1,000 global experts surveyed, 59 percent believed there would be intensified global risks in 2018, yet seven percent believed there would be a decline in the amount of risks globally. Since 2008 there has never been that much concern expressed about the imminent threat of cyber-attacks, but that has changed, probably due to how much technology has developed and grown, as well as the fact it has become so much more accessible to so many more people in different ways.

Rob Wilkinson, corporate security specialist at security company Smoothwall commented to SC Media UK on the cost of a global cyber-attack what everyone can do to combat risks: “The new Global Risks Report from the WEF highlights the worst kept secret in the industry: cyber-attacks pose one of the biggest threats to the world as we know it. From governmental systems, through to hospitals and even military institutions (the very fabric of which keeps a society stable, protected and functioning), these could all be targeted by a wave hackers intent on causing havoc and chaos – often for no monetary reward. The cost of a global cyber-hack is thought to be £92 billion, but what would happen in a worldwide super attack whereby the majority of the world's fundamental defence, healthcare and other systems were so badly affected as to be unusable and obsolete?

“Cloud hacks and software infiltration are seen to be the most likely cause of cyber-attacks. Although cloud has generally been secure of late, cyber-criminals have more pawns to target as an increasing number of companies and services use cloud-based systems. No matter the industry, each organisation or body needs to review its internal security systems promptly to ensure they have a layered security defence spanning encryption, firewalls, web filtering and ongoing threat monitoring as well as a proactive stance against threat actors. Where a cyber-attack could cost as much or more than a natural disaster to fix, protecting the country's basic infrastructure in the face of cyber-criminals is surely a priority. We can ill afford an even bigger WannaCry and Petya.”

Joseph Carson, chief security scientist at Thycotic concurs, telling SC: “Many industries are going through what is deemed as the fourth industrial revolution. With the maritime industry shifting to advanced technologies to help drive smart and intelligent shipping, these provide very exciting and innovative opportunities and are the biggest advance in maritime operations since the advent of the steam engine. Yet these technology advancements do bring major concerns in terms of cyber-dependency and the major concern of cyber-risks and threats.

“Cyber-attacks are increasing and have become a global concern as many systems and devices that run critical infrastructure and decision making are now connected through the worldwide web commonly known as IoT. This means that devices like web cameras and critical systems such as power stations are all connected.

“Public and private companies have become more vulnerable to cyber-attacks as established IT security controls are now failing to protect the current systems. Many companies are not moving quickly enough to new technologies, often because of cost and time constraints. As a result, cyber-attacks have been deemed one of the greatest threat and concern to eight global economies – the USA, Germany, Estonia, Japan, Holland, Switzerland, Singapore and Malaysia.

“This means that it is highly important that cyber-attacks become an urgent boardroom debate; they are no longer an IT problem, but a whole company problem and everyone is now responsible for cyber-security. Cyber-risks put the regulatory frameworks under pressure as they to adapt to these new high frequency and high risk economic threats.”

James Longworth, head of solution architecture at Insight UK, has responded to the report saying: “The new WEF's Global Risks Report 2018 confirmed once again that the threat of cyber-attacks is the modern times' sword of Damocles – always on the back of everyone's minds. The numerous attacks from last year proved that the nature of cyber-threats is constantly evolving and no organisation, be it big or small, can afford to be complacent.

“With the added context of the cost of suffering cyber-attacks set to rise, it was surprising to see in our recent survey of UK business leaders that only 38 percent said improving cyber-security is a priority for their IT investment.

“Ultimately, we are rapidly moving towards an age dominated by connectivity and smart devices – with the Internet of Things swiftly becoming as widespread as radio or TV – giving cyber criminals an exponentially increasing amount of devices to target. This is the time businesses stop hiding behind optimism bias, and instead start improving their cyber-risk management and invest in resilience efforts.”

Khaled Fattal, MLi Group chairman, commented to SC Media UK: "The WEF Global risks report is timely but is it enough to shock chairmen, CEOs and boards of the new reality that everything has changed? Or that many of the strategies they continue to rely on will fail them like they failed many since 2015? Doubt it. Today, the survivability of organisations is under unprecedented threat. This is very real. And the answer is not the resiliency, continuity and cyber-security strategies that continue to fail to defend organisations and governments too routinely. Far from it. These failing strategies are ill equipped to mitigate the destruction motivated new breed of cyber-terrorists, the politically motivated hackers whose aim is to change the political and economic direction of nations, the growing sophistication of the cyber-criminals, and to keep up with the breakneck speed at which technology is evolving and empowering these bad actors.

“Top decision-makers need to start asking what are they missing to survive the seismic shift in the global cyber and non-cyber threat landscape and what new solutions they need to implement. These threats will not go away if decision-makers choose to close their eyes. In fact they are increasing and so is the risk. Unless they come to terms with this new reality and make securing survivability their new ethos and top priority, and adopt multi-faceted strategies that incorporate new solutions, processes and protocols, many who will be breached in 2018 with devastating consequences will not survive. A new mindset and humble pie in seeking answers would be a good start.”

01/18/2018

Total Cyber Solutions

09/06/2016

ID Date Author Target Description Attack Target Class Attack Class Country Link Tags
1 01/08/2016 Peace Yahoo! Peace, the hacker who has previously sold dumps of Myspace and LinkedIn, lists 200 million supposed credentials of Yahoo users on The Real Deal marketplace. Yahoo confirms to be aware of the claim. Unknown Industry: Internet CC US http://motherboard.vice.com/read/yahoo-supposed-data-breach-200-million-credentials-dark-web Peace, The Real Deal, Yahoo!
2 01/08/2016 North Korea South Korea North Korean hackers gain access to data of dozens of South Korean officials including diplomats and top security personnel. Emails and passwords of as many as 56 people are leaked. Account Hijacking Government CE KR http://english.yonhapnews.co.kr/northkorea/2016/08/01/0401000000AEN20160801001151315.html North Korea, South Korea
3 01/08/2016 ? Klimpton Hotels and Restaurants Klimpton Hotels and Restaurants advises guests of a possible credit card breach. POS Malware Industry: Hotel and Hospitality CC US http://www.scmagazine.com/klimpton-hotel-chain-investigating-possible-breach/article/514080/ Klimpton Hotels and Restaurants
4 01/08/2016 Anonymous Several websites belonging to Andrej Babis, Czech Republic's Finance Minister. In name of OpBlokada, the Czech and the Slovakian divisions of the Anonymous ddos the websites of private companies owned by Andrej Babis, Czech Republic's Finance Minister. Targets include: Agrofert, Hyza, Cepro, Preol, Penam, Uniles, and Wotan Forest. DDoS Government H CZ http://news.softpedia.com/news/anonymous-hackers-attack-czech-finance-minister-because-of-online-gambling-law-506946.shtml OpBlokada, Andrej Babis, Agrofert, Hyza, Cepro, Preol, Penam, Uniles, Wotan Forest.
5 02/08/2016 Iranian hackers linked to the state-sponsored group Rocket Kitten Iranian Telegram Users Iranian hackers linked to the state sponsored group called Rotten Kitten have compromised more than a dozen accounts on the Telegram instant messaging service and identified the phone numbers of 15 million Iranian users. Account Hijacking via Telegram Vulnerability Single Individuals CE IR http://uk.reuters.com/article/uk-iran-cyber-telegram-exclusive-idUKKCN10D1DS Telegram, iran, Rocket Kitten
6 02/08/2016 Bitfinex The price of bitcoin plummets after Hong Kong-based digital currency exchange Bitfinex was hit by hackers who stole $65m (£48m, €57m) of the digital currency. Unknown Bitcoin Exchange CC HK http://www.ibtimes.co.uk/bitcoin-price-drops-hackers-steal-65m-honk-kong-based-bitfinex-1573950 Bitfinex, Bitcoin
7 02/08/2016 Pravy Sector Central Ohio Urology Group (centralohiourology.com) Pravy Sector, the Pro-Ukraine hacker (or hackers) dump 150 GB of data from the Central Ohio Urology Group. SQLi Healthcare CC US http://motherboard.vice.com/read/hacker-dumps-sensitive-patient-data-from-ohio-urology-clinics Pravvy Sector, Central Ohio Urology Group, centralohiourology.com
8 02/08/2016 ? 123-Reg (123-reg.co.uk) 123-Reg is taken down by a massive DDoS attack. DDoS Industry: Web Hosting CC UK http://www.ibtimes.co.uk/123-reg-hit-huge-scale-ddos-attack-that-left-websites-email-services-offline-1574069 123-Reg, 123-reg.co.uk
9 02/08/2016 ? Banner Health Arizona healthcare group Banner Health reveals that hackers may have accessed records of 3.7 million of its customers. The attack was initiated on 17 June. Unknown Healthcare CC US http://www.ibtimes.co.uk/banner-health-cyberattack-hackers-may-have-accessed-3-7-million-customers-records-1574186 Banner Health
10 02/08/2016 Group5 (linked to Iran) Syrian Dissidents Citizen Lab reveals the details of a new cyberespionage group, appearing to be associated with Iran, which has launched an advanced malware operation targeting Syrian dissidents. Targeted Attack Single Individuals CE SY https://citizenlab.org/2016/08/group5-syria/ Citizen Lab, Group5, Iran, Syria
11 02/08/2016 Afzal Faizal Unnamed Indian Bank A pro-Pakistani hacker dubbed Afzal Faizal claims to have obtained access to the e-payment system of a nationalized bank Unknown Finance CW IN http://indiatoday.intoday.in/story/intel-agencies-track-pro-pakistan-hacker-afzal-faizal-who-hacked-thousands-of-indian-sites/1/734648.html Afzal Faizal, India, Pakistan
12 02/08/2016 PeggleCrew Fosshub (fosshub.com) A hacking crew that goes by the name of PeggleCrew compromises Fosshub and embedded malware inside the files hosted on the website and offered for download. Account Hijacking Online Services CC US http://news.softpedia.com/news/hacker-compromises-fosshub-to-distribute-mbr-hijacking-malware-506932.shtml PeggleCrew, Fosshub, fosshub.com
13 02/08/2016 Zurael_sTz parsiva.daba.co.ir An Israeli hacker going by the handle of Zurael_sTz hacks the official website of Iranian Internet services provider Daba and leaks login credentials of thousands of registered users. The total hack should include 52K users, despite only a smaller number of accounts is dumped. Unknown Industry: ISP H IR https://www.hackread.com/iranian-isp-daba-hacked-israeli-hacker/ Zurael_sTz, Daba, parsiva.daba.co.ir
14 03/08/2016 PoodleCorp Blizzard's Battle.net Blizzard's Battle.net servers are hit by a massive DDoS attack causing latency, connection and login issues across popular games such as Overwatch, World of Warcraft and Hearthstone DDoS Industry: Video Games CC US http://www.ibtimes.co.uk/blizzards-battle-net-servers-knocked-offline-following-massive-ddos-attack-1573969 PoodleCorp, Blizzard, Battle.net, Overwatch, World of Warcraft, Hearthstone
15 03/08/2016 PoodleCorp League of Legend And the PoodleCorp collective also claims to have taken down the website of League of Legends DDoS Industry: Video Games CC US https://www.hackread.com/poodlecorp-ddos-blizzard-league-of-legends-servers/ PoodleCorp, League of Legends, leagueoflegends.com
16 03/08/2016 ? Romelu Lukaku's Instagram Account Romelu Lukaku, the Everton footballer is the latest celebrity to have his own Instagram account hacked. Account Hijacking Single Individuals CC BE https://www.thesun.co.uk/sport/football/premierleague/1551358/romelu-lukaku-has-instagram-account-hacked-while-playing-in-wayne-rooney-testimonial/ Romelu Lukaku, Everton
17 04/08/2016 ? An Garda Síochána (Irish Police) Police in Ireland launches a probe after a hacker attempted to break into its computer network, forcing officials to temporarily shut down several of their systems to ensure the security of data held on staff and the public Malware Law Enforcement CC IE http://www.ibtimes.co.uk/irish-police-launch-probe-after-zero-day-attack-hits-computer-networks-1574949 Irish Police, An Garda Síochána
18 04/08/2016 China Several targets including the Philippines Department of Justice F-Secure reveals the details of NanHaiShu, a spy campaign aimed at accessing information from high-profile targets involved in the South China Sea dispute. Targeted Attack Government CE PH https://labsblog.f-secure.com/2016/08/04/nanhaishu-rating-the-south-china-sea/ F-Secure, Philippines, NanHaiShu
19 04/08/2016 Kazakhstan Government? Kazakh Dissidents The Electronic Frontier Foundation reveals the details of Operation Manul, a cyber espionage campaign targeting journalists, political activists and lawyers. Targeted Attack Single Individuals CE KZ https://www.eff.org/press/releases/malware-linked-government-kazakhstan-targets-journalists-political-activists-lawyers Kazakhstan, Operation Manul, EFF, Electronic Frontier Foundation
20 04/08/2016 ? Christians Against Poverty (capuk.org) UK debt relief charity Christians Against Poverty notifies supporters following a data breach that exposed personal details including phone and bank account numbers, and banking sort codes. Unidentified hackers broke into the charity’s systems in late July. The intrusion was only detected a week later. Unknown Org: Charity CC UK http://www.theregister.co.uk/2016/08/15/cap_data_breach/ Christians Against Poverty, capuk.org
21 04/08/2016 Intsights ISIS Forum on the Dark Web Intsights, an Israeli cyber-intelligence firm, claims to have uncovered plans for future ISIS attacks after hacking into an ISIS forum the group had used in the past to plan other attacks. Account Hijacking Org: Terrorism CW N/A http://news.softpedia.com/news/security-firm-says-it-uncovered-new-terrorist-attacks-after-hacking-isis-forum-506960.shtml Intsights
22 04/08/2016 PoodleCorp PlayStation Network The PoodleCorp collective claims to have taken down the PlayStation Network servers. DDoS Industry: Video Games JP CC https://www.hackread.com/poodlecorp-ddos-gta-playstation-servers/ PoodleCorp, PlayStation Network
23 04/08/2016 PoodleCorp GTAOnline And this time the PoodleCorp collective claims to have taken down the GTA (Grand Theft Auto) website. DDoS Industry: Video Games US CC https://www.hackread.com/poodlecorp-ddos-gta-playstation-servers/ PoodleCorp, GTAOnline, Grand Theft Auto
24 05/08/2016 ? The Khronos Group (khronos.org) Accounts of employees from Apple, Intel, and Google are exposed after the website of the Khronos Group, a non-profit organization, is hacked. SQLi Org: Non-Profit CC US http://motherboard.vice.com/read/apple-intel-google-employee-accounts-exposed-in-data-breach Khronos Group, Apple Intel, Google
25 05/08/2016 ? Smartphone users in China and Japan Bitdefender reveals the details of an Android RAT designed to target smartphones with specific IMEI numbers in China and Japan. Malware Single Individuals CC "JP
CN" http://www.infosecurity-magazine.com/news/italian-android-rat-targets-china/ Android, RAT
26 05/08/2016 Anonymous Brazil Several Brazilian government websites The online hacktivists of Anonymous Brazil take down several Brazilian government websites to protest against the ongoing Olympics in Rio de Janeiro. Targets include: the official website of the federal government for the 2016 Games (brasil2016.gov.br), Portal of the State Government of Rio de Janeiro (rj.gov.br), Ministry of sports (esporte.gov.br), Brazil Olympic Committee COB (cob.org.br) and the official website of the Rio 2016 Olympics (rio2016.com). DDoS Government H BR https://www.hackread.com/anonymous-ddos-brazilian-government-websites/ Anonymous Brazil, brasil2016.gov.br, rj.gov.br, esporte.gov.br, cob.org.br, rio2016.com, Rio 2016
27 05/08/2016 Anonymous Brazil Several Brazilian government individuals In the second phase of their operation, Anonymous Brazil claims to have leaked personal details of Mayor of Rio de Janeiro, Governor of Rio de Janeiro, Minister of Sport, President of the Brazilian Olympic Committee and three businessmen who are allegedly involved in corruption. Unknown Single Individuals H BR https://www.hackread.com/anonymous-ddos-brazilian-government-websites/ Anonymous Brazil, Rio 2016
28 06/08/2016 OurMine Alexa Losey Twitter Account The OurMine collective hacks the Twitter account of popular Youtuber Alexa Losey Account Hijacking Single Individuals CC US https://www.hackread.com/zach-klein-alexa-losey-twitter-hack/ OurMine, Alexa Losey
29 07/08/2016 Strider Selected targets in Russia, China, Sweden, and Belgium Symantec reveals the details of Strider, a previously unknown group conducting cyber espionage-style attacks against selected targets in Russia, China, Sweden, and Belgium (36 infections across 7 organizations since 2011). The group uses an advanced piece of malware known as Remsec (Backdoor.Remsec) to conduct its attacks. Its code contains a reference to Sauron, the all-seeing antagonist in Lord of the Rings. Targeted Attack >1 CE "RU
CN
SE
BE" http://www.symantec.com/connect/blogs/strider-cyberespionage-group-turns-eye-sauron-targets Symantec, Strider, Sauron, Remsec
30 07/08/2016 OurMine Twitter and Quora account of Zach Klein, co-founder of video-sharing website Vimeo The official Twitter and Quora account of Zach Klein, co-founder of video-sharing website Vimeo are hacked by the OurMine collective. Account Hijacking Single Individuals CC US https://www.hackread.com/zach-klein-alexa-losey-twitter-hack/ OurMine, Zach Klein, Quora, Twitter, Vimeo
31 08/08/2016 Carbanak Gang MICROS The Carbanak Gang appears to have compromised a customer support portal for companies using Oracle’s MICROS point-of-sale credit card payment systems, and used that access to steal administrative credentials and implant malicious code on 700 terminals. POS Malware Industry: PoS Systems CC US http://krebsonsecurity.com/2016/08/data-breach-at-oracles-micros-point-of-sale-division/ Oracle, Micros, Carbanak
32 08/08/2016 New World Hackers michaelphelps.com New World Hackers claim responsibility for taking down the personal website of Michael Phelps. DDoS Single Individuals CC US http://www.newsweek.com/michael-phelps-website-down-hackers-record-olympics-gold-488171 New World Hackers, michaelphelps.com
33 09/08/2016 ? Australian Bureau of Statistics (abs.gov.au) Millions of Australian citizens hoping to take part in the country's first ever digital census are left frustrated after the website used to complete the survey is taken down by a DDoS attack DDoS Government CC AU http://www.ibtimes.co.uk/australias-first-digital-census-monumental-failure-website-goes-into-meltdown-1575307 abs.gov.au, Australian Bureau of Statistics
34 09/08/2016 ? PoS Systems Worldwide Panda Labs reveals the details of a criminal group is using compromised LogMeIn accounts belonging to systems running PoS software to access those computers and infect them with the new PosCardStealer malware. PoS Malware >1 CC >1 http://news.softpedia.com/news/criminal-group-uses-logmein-to-compromise-pos-systems-with-malware-507112.shtml PoSCardStealer, Panda Labs, LogMeIn
35 09/08/2016 ? Brant County Health Unit Brant County Health Unit reveals that an unauthorized person gained access to the immunization records of nearly 500 people between July 2015 and October 2015. Unknown Healthcare CC US http://kitchener.ctvnews.ca/brant-county-health-unit-says-494-personal-records-breached-1.3021845 # Brant County Health Unit
36 10/08/2016 ? Dota 2 Forum The forum for the popular online multiplayer game, Dota 2 is hacked and as a result, 2 million accounts are leaked. The Attack was executed on July 10. SQLi (via vBulletin vulnerability) Industry: Video Games CC US http://www.zdnet.com/article/dota-2-players-targeted-by-forum-hackers-in-new-breach/ Dota 2, Valve, vBulletin
37 10/08/2016 ? Instagram Users Symantec reveals the details of a campaign aimed to hack Instagram accounts, altering profiles with sexually suggestive imagery to lure users to adult dating and p**n spam. Account Hijacking Single Individuals CC >1 http://www.symantec.com/connect/blogs/instagram-accounts-hacked-altered-promote-adult-dating-spam Symantec, Instagram
38 10/08/2016 ? We**am A Texas mother realizes that someone hacked into a we**am positioned in her two daughters' bedroom and streamed their private goings-on live online for thousands to watch. Account Hijacking Single Individuals CC US http://abcnews.go.com/Technology/we**am-nightmare-mom-finds-daughters-room-featured-live/story?id=41283605 We**am
39 10/08/2016 ? Anderson County Anderson County government officials and the sheriff’s office investigate a possible computer security breach (a “potential system-wide breach” of the main courthouse server) involving 1,800 people. Unknown Government CC US http://wate.com/2016/08/10/1800-possibly-affected-by-anderson-county-government-computer-breach/ Anderson County
40 11/08/2016 ? Natwest users Malwarebytes reveals the details of a social engineering campaign carried out on Twitter and made inserting a fake account into a conversation with legitimate support channels. This specific campaign targets Natwest bank accounts. Account Hijacking Single Individuals CC >1 https://blog.malwarebytes.com/cybercrime/2016/08/scammers-sneak-into-customer-support-conversations-on-twitter/ Natwest, Malwarebytes
41 11/08/2016 Carbanak Gang 5 PoS Systems manufacturer including Cin7, ECRS, Navy Zebra, PAR Technology and Uniwell Forbes reveals that the Carbanak Gang also breached 5 more cash registers providers. POS Malware Industry: PoS Systems CC US http://www.forbes.com/sites/thomasbrewster/2016/08/11/oracle-micros-hackers-breach-five-point-of-sale-providers/ Carbanak, Cin7, ECRS, Navy Zebra, PAR Technology, Uniwell
42 11/08/2016 ? LinkedIn A new lawsuit reveals that data thieves used a massive botnet against LinkedIn to steal members' personal information via information scraping by fake profiles. Bots Social Network CC US http://www.siliconbeat.com/2016/08/11/linkedin-bot-attack-thats-stealing-member-data/ Linkedin
43 11/08/2016 ? swimming.org.au Swimming.org.au, the swimming Australia's website is hit by a DDoS attack in the wake of Olympic gold medallist Mack Horton's comments about his Chinese competitor Sun Yang being a drug cheat. DDoS Org: Sport CC AU http://www.abc.net.au/news/2016-08-11/rio-2016-dos-attack-made-swimming-australia-website/7721848 swimming.org.au, Mack Horton, Sun Yang, China
44 11/08/2016 Monsoon Group (Indian speaking hackers) Chinese nationals within different industries and government agencies in Southern Asia Forcepoint reveals the details of the Monsoon Group (also known as Patchwork APT, Dropping Elephant, and Operation Hangover), a crew of hackers based in India, who has compromised both Chinese nationals within different industries and government agencies in Southern Asia, as far back as 2013. Targeted Attack >1 CE >1 http://www.theregister.co.uk/2016/08/11/monsoon_black_hats_threeyear_crap_hack_whacks_chinese_nats/ Forcepoint, Monsoon Group, Patchwork APT, Dropping Elephant, Operation Hangover
45 11/08/2016 ? Municipality of Ede The Municipality of Ede reveals to have discovered on July 8th that the personal information of about 3,700 Ede residents has been accessed by unauthorized persons due to a security vulnerability on the municipal site. Unknown Government CC NL http://www.nltimes.nl/2016/08/11/personal-data-3700-ede-residents-leaked-municipal-site/ Municipality of Ede
46 12/08/2016 Guccifer 2.0 Democratic Congressional Campaign Committee (DCCC) Guccifer 2.0 leaks a fresh batch of documents, memos and passwords, this time from the Democratic Congressional Campaign Committee (DCCC). They include a spreadsheet of congressional contacts' phone numbers and email addresses, internal memos and what purports to be documents stolen from the computer of Nancy Pelosi, the highest-ranking Democrat in Congress. Account Hijacking Org: Political Party CC US http://www.ibtimes.co.uk/guccifer-2-0-returns-hacker-leaks-internal-files-second-democratic-party-group-1575818 Guccifer 2.0, DCCC, Democratic Congressional Campaign Committee
47 12/08/2016 ? Major Iranian Oil and Gas Facilities Iran's Supreme National Cyberspace Council investigates whether a recent string of oil and petrochemical fires were caused by a cyberattack. Targeted Attack Industry: Oil and Gas CW IR http://www.scmagazine.com/home/archive/22664/ Iran Supreme National Cyberspace Council
48 12/08/2016 Anonymous Poland World Anti-Doping Agency and Court of Arbitration for Sport (tas-cas.org) A collective associated with the Polish branch of the Anonymous hacks the servers of the World Anti-Doping Agency and Court of Arbitration for Sport (tas-cas.org) and dumps a 412MB file which contains 3,121 unique email accounts along with their passwords. SQLi Org: Sport H INT https://www.hackread.com/world-anti-doping-agency-site-hacked/ Anonymous Poland, CAS, TAS, WADA, tas-cas.org, World Anti-Doping Agency and Court of Arbitration for Sport
49 12/08/2016 ? Valley Anesthesiology and Pain Consultants (VAPC) Valley Anesthesiology and Pain Consultants announces that a third party may have gained unauthorized access to the VAPC computer systems on March 30, 2016. The incident involves approximately 882,590 patients, and all current and former employees and providers. Unknown Healthcare CC US https://www.databreaches.net/valley-anesthesiology-and-pain-consultants-notifying-882590-patients-plus-all-employees-and-providers-of-security-incident/ Valley Anesthesiology and Pain Consultants, VAPC
50 13/08/2016 ? Yulia Stepanova's WADA Account The World Anti-Doping Agency (WADA) confirms that hackers appear to have accessed the online account of Russian athletics doping whistleblower Yulia Stepanova. Account Hijacking Single Individuals CC RU https://www.wada-ama.org/en/media/news/2016-08/wada-confirms-illegal-activity-on-yuliya-stepanovas-adams-account World Anti-Doping Agency, WADA, Yulia Stepanova
51 14/08/2016 ? HEI Hotels & Resorts HEI Hotels & Resorts, the chain that owns Starwood, Marriott, Hyatt, and Intercontinental hotels, reveals that the payment systems for 20 of its locations has been infected with malware that may have been able to steal tens of thousands of credit card numbers and corresponding customer names, expiration dates, and verification codes. The malware was discovered in early to mid-June. PoS Malware Industry: Hotel and Hospitality CC US http://www.cnbc.com/2016/08/15/starwood-marriott-hyatt-ihg-hit-by-malware-hei.html HEI Hotels & Resorts, Starwood, Marriott, Hyatt, Intercontinental
52 14/08/2016 ? Sage Software A data breach at Sage Software may have compromised personal information for employees at 280 UK businesses. The breach was caused by "unauthorised access" by someone using an "internal" company computer login. The alleged author of the attack, a 32 years old woman, is arrested on August 17. Account Hijacking Industry: Software CC UK http://www.bbc.co.uk/news/business-37112870 Sage Software
53 15/08/2016 Shadow Brokers The Equation Group An anonymous group calling itself Shadow Brokers publishes what it claims are sophisticated software tools belonging to an elite team of hackers tied to the US National Security Agency known as "The Equation Group". A further analysis confirms the link with the state sponsored crew. Unknown Government CC US http://arstechnica.com/security/2016/08/code-dumped-online-came-from-omnipotent-nsa-tied-hacking-group/ Shadow Brokers, NSA, The Equation Group
54 15/08/2016 Queensland Police Service’s Task Force Argos US Tor Users Motherboard reveals that, in 2014, Australian authorities hacked Tor users in the US as part of a child p**nography investigation against The Love Zone, a dark web child abuse site. Account Hijacking Single Individuals CC US https://motherboard.vice.com/read/australian-authorities-hacked-computers-in-the-us The Love Zone, TOR, Argos, Queensland Police
55 15/08/2016 Unknown India-based Hackers Several targets Malwarebytes reveals the details of Shakti, a trojan built with the only purpose to steal documents. Targeted Attack >1 CE >1 http://www.ibtimes.co.uk/india-based-hackers-suspected-behind-corporate-espionage-malware-dubbed-shakti-trojan-1576313 Shakti, Malwarebytes
56 15/08/2016 ? .gov email addresses Unknown attackers launch a massive attack aimed at flooding targeted .gov email inboxes with subscription requests to thousands of email lists. DDoS Government CC US http://krebsonsecurity.com/2016/08/massive-email-bombs-target-gov-addresses/ DDoS
57 15/08/2016 Kerala Cyber Warriors 50 Pakistan websites In occasion of the Indian Independence Day, Kerala Cyber Warriors deface 50 Pakistani Websites. Defacement >1 CW PK http://www.thenewsminute.com/article/independence-day-kerala-cyber-warriors-hack-50-pakistan-websites-48236 Kerala Cyber Warriors, India, Pakistan

A hacker claims to have a massive set of Yahoo stolen passwords, and the company isn't denying that.