In January 2017, we discussed how cybercriminals were hacking and ransoming MongoDB databases, a lucrative practice that soon spread to Elastic databases. Three months on, are we any closer to a solution?
An estimated 25% of all Internet users choose weak passwords that are easy to remember. Around 60% use the same password for several or all of their accounts.(1) These dangerous habits are due to the growing number of websites requiring online authentication.
The domain name system (DNS) is a fundamental part of the web. This system translates the characters in a website’s name (for example, cybelangel.com) into an IP address, allowing browsers to connect to website servers.
On 28 February, cybersecurity expert Troy Hunt reported that data from thousands of Spiral Toys customer accounts had been leaked online. Spiral Toys, a California-based company, sells connected CloudPets teddy bears, which can play remotely recorded voice messages to children. The database used to store account data and voice messages was completely unprotected: more than 2 million audio messages and 821,000 user records had been exposed on the Internet.
On 3 February 2017, the Polish news website Zaufana Trzecia Strona reported that Poland’s banking industry had been hit by what is considered its most serious security incident to date: a cyberattack on 20 of the country’s banking institutions, resulting in the loss of large amounts of data.
Valentine’s Day is all about love – and Internet users are a romantic bunch. CybelAngel has come up with a list of the ten most popular love-themed passwords, based on millions of leaked credentials on the web.
The Global Distribution System (GDS) is a unique tool used by travel agents worldwide to book air travel – yet it has very few security features. Unless the system’s IT infrastructure is overhauled, cybercriminals will continue to be able to access passengers’ personal data and hack their plane tickets.