Hackers get into National Republican Congressional Committee’s email

Thousands of emails were stolen” from four senior aides to the National Republican Congressional Committee (NRCC), the campaign arm for House Republicans, during the 2018 midterm campaign. MSSP first detected the hack and then CrowdStrike was brought into it in April to investigate the “unauthorized access.” The emails were not made public and no other personal information or donor details are believed to have been affected by the hack. The FBI is investigating.

Other cybersecurity news:

Canada’s 1-800-Flowers hacked

Four flipping years — not only was that how long baddies had access to Marriott’s Starwood’s guest reservation database before being noticed, but it’s also how long it took the Canadian branch of 1-800-Flowers to realize an unauthorized actor had access to website customers’ payment card data. The breach notification (pdf) sent to the California attorney general’s office revealed the attacker had access to payment card data from Aug. 15, 2014, to Sept. 15, 2018. Stolen data included names, payment card numbers, expiration dates, and security codes for about 75,000 Canadian flower shoppers.

Out-of-band patch the Adobe Flash zero-day

Adobe released an out-of-band security update for Flash Player; the zero-day has been used inside malicious Microsoft documents.

Critical Kubernetes vulnerability

Source link

Leave a Reply

Your email address will not be published. Required fields are marked *