Page 15 - Threat Intelligence - 8-21-2019
P. 15
Data Breach
Credit Karma glitch exposed users to other people’s accounts - Users of credit monitoring site Credit
Karma have complained that they were served other people’s account information when they logged in.
Many took to a Reddit thread and complained on Twitter about the apparent security lapse.
Source: https://techcrunch.com/2019/08/14/credit-karma-glitch-accounts/
Not very Suprema: Biometric access biz bares 27 million records and plaintext admin creds - Two
infosec researchers found 27 million personal data records, including a million people's fingerprints,
exposed to the public along with plaintext admin credentials for the Suprema Biostar 2 system they were
associated with.The database powering South Korean company Suprema Inc's Biostar 2 biometric access
control system - which controls entry and exit to secure areas in buildings around the globe, including "1.5
million installations worldwide" - was "unprotected and mostly unencrypted", according to a internet
privacy researchers who found the flaws.
Source:https://www.theregister.co.uk/2019/08/14/biostar_2_suprema_database_exposed_27m_
records/
Decade-Long Bank Account Hacking Scheme Gets Fraudster 57 Months - Brooklyn man Jason Mickel
Elcock was sentenced today to 57 months in prison for a series of account hijacking attacks spanning
more than a decade, having used stolen personal and financial information to pilfer over $1.1 million from
banks and online retailers.Account hijacking is a well-known tactic in identity theft schemes through
which attackers profit from their victim's stolen account information to conduct unauthorized activities.
Source: https://www.bleepingcomputer.com/news/security/decade-long-bank-account-hacking-
scheme-gets-fraudster-57-months/
www.accumepartners.com
15
