Each week, the PhishLabs team posts The Week in Cybercrime (TWIC) to recap noteworthy cybercrime articles and reports (open source).
Indian Hackers Deface Over 40 Pakistani Websites Hours After Two Indian Government Portals Were Hacked (Inquisitr)
Hours after an Indian website was hacked by a Pakistani hacker, a wave of cyber attacks targeted at Pakistan have left dozens of Pakistani websites defaced or hacked. According to a report by the Hindu, the latest chapter in the long drawn feud between Indian and Pakistani hackers was added when a Pakistani hacker decided to hack the official website of the Government of Kerala, a southern Indian state.
New DDoS attack uses smartphone browsers to flood site with 4.5bn requests (ZDNet)
Researchers suspect a mobile advertising network has been used to point hundreds of thousands of smartphone browsers at a website with the aim of knocking it offline.
Banks: Card Breach at Hilton Hotel Properties (Krebs on Security)
Multiple sources in the banking industry say they have traced a pattern of credit card fraud that suggests hackers have compromised point-of-sale registers in gift shops and restaurants at a large number of Hilton Hotel and franchise properties across the United States. Hilton says it is investigating the claims.
Developers find themselves in hackers’ crosshairs (CSO)
Attackers have long targeted application vulnerabilities in order to breach systems and steal data, but recently they’ve been skipping a step and going directly after the tools developers use to actually build those applications.
Trump hotels hacked, credit card data at risk (Money CNN)
Apparently, hackers managed to hide inside the company's computers for a long time. The hotel chain warned that anyone who visited a Trump hotel between May 19, 2014 and June 2, 2015 "may have been affected."
Stagefright Bug 2.0 - One Billion Android Smartphones Vulnerable to Hacking (Hacker News)
More than 1 Billion Android devices are vulnerable to hackers once again – Thanks to newly disclosed two new Android Stagefright vulnerabilities.
Gigabytes of user data from hack of Patreon donations site dumped online (Ars Technica)
The data has been circulating in various online locations and was reposted here by someone who said it wasn't immediately possible to confirm the authenticity of the data. Security researcher Troy Hunt has since downloaded the archive file, inspected its contents, and concluded that they almost certainly came from Patreon servers. He said the amount and type of data posted by the hackers suggest the breach was more extensive and potentially damaging to users than he previously assumed.
Hack Brief: Hackers Steal 15M T-Mobile Customers’ Data From Experian (Wired)
For hackers looking for fraud victims, few targets are as tempting as the data brokers that make a business out of assembling millions of people’s private information. That’s a lesson T-Mobile is learning now that its partnership with one such data collector, Experian, has resulted in the theft of 15 million T-Mobile customers’ private details.