According to the source, it was found that A1 Telekom, the largest internet service provider in Austria Which can admit to a security breach this week which whistleblower’s exposed.

The company admitted to suffering from the malware infection in November 2019 as the A1 security team detected a month later. The main issue is to remove the infection which is more problematic than it was at the initial anticipation.

It all from December 2019 to may 2020 where the security team had done all their jobs to take the malware operators in attempts which can remove all the hidden backdoor components which kick out the intruders.

A1 which has disclosed the nature of the malware which didn’t say if the intruders who are financially focused are a cybercrime gang.

When some bloggers came in contact with the Austrian ISP they discussed the malware which only infected the computers on its office network which consist of more than 15,000 workstations, 12,000 servers, and thousands of applications.

The threat actor wants to tool manual control of the malware and attempted to expand the foothold on the few systems to check the company’s entire network. The company security expert also said that the attackers are able to manage or compromised some database and even ran database queries in order to learn the companies internal network

With the talk with the Austrian press,” A1 which has a complex of its internal network which helped to prevent the threat actor from affecting the other systems and this happens because the thousands of the databases and their relationship are by no means for an outsider to understand.

The A1 mentioned to heise that the serious compromise that the lasted more than six months which can be attackers did not get the hands-on the sensitive customer data.according to the claims it was coming out with the queries of location, phone number and the other customer data for the certain private A1 customers

From the company, it was assured that the password of 8,000+ employees has changed the password and all access keys of the servers.

If you have any suggestions for the article. let me know in the comment section.

The post The Austria’s largest ISP Data breached by Hacker appeared first on Vednam.

The android users are pretty accustomed to warnings from security researchers even google can take the best effort to check the application involvement in ransomware or any other into the Play Store. 

After the report of the researcher which has a large audience and many android users are evolved in this called SnapTube. This app is basically used to download videos from youtube and Facebook. It was also mentioned that this app is downloaded more than 40 Millions times

This app is totally free to download but it can cost you more than that.

According to the new report of Upstream Systems that the user of a snap tube installed on their smartphone could find himself paying deadly. That is the simple download app quietly signs up users for the premium services without their knowledge.

The above practice is known as “freeware” which means the developer abused the ability for the apps to begin charging users a subscription fee after a trial to test the service.

Google allows third-party developers to charge the credit and debit card which can be saved with your google accounts for some of the most popular services like NetFlix.

The vast majority of users usually uninstall an app when they are not interested or remove the subscription. You might forget that you have even signed up for the trial subscription for the applications and you don’t remove that part and instead remove the application from your phone. When you download a snap tube then it is asking for a premium package and you just go and fill all the details for trial and download the video and after that uninstall the application.

It was estimated that a total of $100 Million has been earned by the snap tube through this fraud method.

When this issue comes to light then the developer of the snap tube said that we are unaware of this issue and they will fix this as soon as possible. And they claim that unwanted charges have been deducted by the third party application.

If you have downloaded the snap tube and see some unusual changes with you account then delete the application and be safe from fraud 

Share your thoughts on this article in the comment section. Thank you for your time.

The post 40 Million Android Snap Tube Application User are at risk : Report appeared first on Vednam.

The hacker mentioned the name “john wick” who had hands in breaching the ZEE5 systems and downloaded 150GB of live data and also stole the source code of the Website.

Mainstream Story

According to the report which is circulated on the internet”the hacker who breached the data has a connection from the Korean hacking group which executed this plan successfully and sold all the data on the hackers’ forums”.

Hackers group shared some of the proof that they have access to the ZEE5’s Private code which are confirmed by the monitoring team and it was said that the access proof is correct the hack happened between the end of February or March.

Few Days after the hackers shared the other sample which is a very serious concern because this sample has the live code secret keys and credentials of the unsecured AWS.

The last breach was also detected on the 24th April 2020 and clearly indicated that the hacker has access to recently subscribed users and the database which contains user details among every state of India.

The database breach which we are talking about has the records of the “Payment Platform”.This is really becoming a big deal for the company that the user data with payment details that mainly harms the users who are connected with the ZEE5.

According to Ralph Wagner “We don’t manage the Zee5 Database and nor the Mysql database which are mentioned. I will investigate the whole breach and then we will share the proper details’

The leaked data includes which such information like :

1. Email Address
2. Mobile Numbers
3. Recent transaction 
4. Passwords

An Email sent to the different news agency which mentions “will expose your database & code in public for the open sale soon”

The Email address si sends from a secure and encrypted email service which cannot be able to trace the email. The mail send from the hacker through “hckindi@tutanota.com “

This email server is used in different campaigns like Dharma ransomware and the same email address which is seen used by the Korean hacker.

This is not the first time this hacking happens with the ZEE5. This all breach happens and the company says or takes any action on the breach.

If you like the Content comment and share it with others. Thank you for reading the article.

The post Zee5 Hacked-150GB Data leaked from Video On demand Platform appeared first on Vednam.

The Client data was exposed on April 22 when the bank uploaded the final PPP applicant’s details in the US small business administration’s test platform.

The platform was designed to give lenders the opportunity for the test PPP submissions before the second round for the application kicker out.

The breach was done while filling made by the bank of America with California attorney General’s office. After that, the other SBA-authorized lenders and the vendors were able to see the client’s information.

The information which was leaked included not only the user data but also the owner’s information. The data compromised that also included a business address and tax identification number along with the owner’s name, social security number, address, phone number, email address, and citizenship status.

According to the headquarters of Bank which is situated In Charlotte, North Carolina mentions that the information access is limited.

The spokesperson of the bank said” There is not to worry about your information because it was not viewed or misused by these leaders or vendors. The Information was not visible to other business clients applying for the loans, or the public at any time.”

The Exposed data was drawn from a pool of nationwide applications, meaning that business in multiple states.

Around 305,000 PPP relief applications have been proposed by the Bank of America.

After the breach, the bank of America asked the small business administration to remove the visible information. 

The bank also expressed that the PPP application should not be affected by the cybersecurity mishap. An internal investigation has been launched to determine the data exposed.

Bank of America is offering clients affected by the breach free two-year membership for the theft protection.

The post Bank of America Data Breach affects the clients appeared first on Vednam.

While investigating the data leak we found it was around 132 GB data which is linked with Bigfooty.com, a website and mobile application mainly made for the Aussie Rules Football where around 100,000 members joined in that.

Although going deep in investigating, a Security officer found that the data leaked not only contain personal information. Some of them are anonymous users and some people private messages seen by the security officer which contain email addresses, passwords, and usernames for the site and the live streams

If the cyber attacker has known your data from the database they may have got useful credential stuffing to attack the other sites.

Finding the whole user messages it contains personal threats and racist content, which could be used for the cyber attacker to blackmail that user.

The security officer said” The private messages are fully exposed and it was leaked and you can’t trace back to the specific users. The leak data contains high-profile users like an Australian police officer and government employees “

The private information that belongs to the individuals may include the chat and email address that was enough for the cyber attacker to blackmail and damage the reputation of high profile or even normal users also.

When we talk about the technical term it was also mentioned that the site includes the IP address, Server and OS information, GPS data, and access logs that may allow hackers to compromise the part of IT infrastructure.

The leak was closed by the Australian Cybersecurity center after a short period of time and BigFooty didn’t respond after that.

The security office has seen more accidents and leaks at two popular money-saving websites and perhaps most time it happens with the adult live streaming site.

The post 70 Million records Leaked from Aussie Football Site appeared first on Vednam.

The Data Size is almost nearly 3 GB of memory that the hacker has stored. The firm also disclosed 2000 Aadhaar cards and some sensitive information of 1.8 Million people from Madhya Pradesh State (India) in the same forum leaked.

From the Government’s personal statement yet not come about the data theft associated with citizens of Madhya Pradesh but from the newspaper “The Hindu” found the leaked during the research of job seeker data theft. The authorities are investigating the sensitive matter and taking serious concerns about this.

From the investigation, It was found that the data breach was leaked by a CV aggregation service from the legal job portal websites. 

After a weekend it was also explained that the data might have been out by an unsafe elastic search instance and made unavailable. The cyble security Expert said that the breach includes all kinds of sensitive data like email address, home address, phone number, work experience, DOB, qualification, and many more.

The Hackers also hunt all kinds of information so that they can efficiently conduct and follow the footprint of the user and do theft, scamming and corporate spying.

There are various screenshots that rotate in social media shows that most of the states which are affected are Delhi, West Bengal, Pune, Tamil Nadu, Karnataka, Ahmedabad, Bengaluru, Mumbai and Chennai with other states.

According to Security researchers, the hacking was based on comprehensive discussion and distribution of mutual and relevant resources. All these hacking panels where users can obtain loads of numerous data leak, hacking and cracking tools, some cracked software with different kinds of hacking tutorials.

Every user in the hacking panel where the job seekers data leak also take part in the discussion and make friends as well.

The researcher has mentioned that some unknown sources of a data breach, through which the information of this data breach is not cleared yet that how this will happen?

The post 29 Million Indian Job Seekers data Leaked on Deep Web For Free appeared first on Vednam.