Vodafone Tells Hacked Customers with "1234" Password to Pay Back Money

Vodafone Tells Hacked Customers with "1234" Password to Pay Back Money

https://www.bleepingcomputer.com/news/security/vodafone-tells-hacked-customers-with-1234-password-to-pay-back-money/

A Czech court recently sentenced two hackers to three years in prison for accessing Vodafone customer's mobile accounts and using them to purchase 600,000 Czech Koruna worth of gambling services. Vodafone reportedly wants the hacked victim's to pay for these charges as they were using an easy password of "1234".
According to reporting from Czech news site idnes.cz, the hackers accessed mobile customer's accounts by using the password 1234. Once they were able to gain access, they ordered new SIM cards that they picked up from various branches. As they knew the phone number and password they were able to pick up the SIM card and install it in their phones without any other verification.

This allowed the attackers to charge over 600,000 Czech Koruna, or approximately 30K USD, for gambling services.

Comments

Post a Comment

Popular posts from this blog

Apple Removes Top Security App For Stealing Data and Sending it to China

Apple Removes Top Security App For Stealing Data and Sending it to China Apple removed today a very popular anti-malware app called Adware Doctor from the Mac App Store because it was gathering browsing history and other sensitive information without a user's permission and then uploading it to someone in China. Adware Doctor is promoted as an anti-malware and adware protection program that claims to be able to protect your Mac from malicious files and browser from adware. This program was the #1 paid utility in the Mac App Store with a 4.8 star rating and over 7,000 reviews. https://www.bleepingcomputer. com/news/security/apple- removes-top-security-app-for- stealing-data-and-sending-it- to-china/
Read more

Cyber security is changing, and so is the way it’s being sold

Cyber security is changing, and so is the way it’s being sold https://www.itworldcanada.com/article/cybersecurity-is-changing-and-so-is-the-way-its-being-sold/409213 Cyber security vendors still have sales targets to meet and their own products to glorify, but a “weird sales dynamic,” as Brian Krause describes, is also creeping its way into the market. “Every single person in here is a salesperson, there’s no denying what we’re doing here … it’s our software first,” said the director of North American channels for Centrify, referring to a room full of cyber security vendors at Optiv Security‘s 2018 Toronto Enterprise Security Solutions Summit last week. “But we’re seeing more, especially in the software community, most of us are partnering with each other.”
Read more

Full disclosure: Benchmarking data reveals the human error in privacy

Full disclosure: Benchmarking data reveals the human error in privacy  incidents https://iapp.org/news/a/full-disclosure This month, we are returning to this topic to dig deeper into incident intent classifications and how they can be further broken down into specific scenarios. To level set, looking at data from January 2017 through July 2018, we can see that the vast majority of incidents fall into one intent classification: ·           Intentional, malicious intent: 0.86 percent of incidents. ·           Intentional, not malicious intent: 2.78 percent of all incidents. ·           Unintentional or inadvertent intent: 96.33 percent of all incidents. The numbers show that unintentional or inadvertent incidents — those typically caused by human error rather than malicious intent such as hacking — are by far the most common. ...
Read more