Explore the latest news and trends  

Sign up for our weekly security newsletter


Be the first to receive important updates on security





Send

Website of Faithless British EDM Band Broken


Security experts of CyberInt discovered a listing on the Dark Web during last September, which contains a database dump of approximately 18,000 registered users on the official website of the band, known as faithless.co.uk. Softpedia posted on 14th January, 2016, stating that the data containing emails, usernames and passwords of each account was being sold for a few hundred dollars.

Although Personally Identifiable Information (PII) was not included in the exfiltrated data, most commonly users reuse passwords for numerous accounts. Attackers might use this credential to breach into other profiles containing more information about each user, including financial details with which attackers can do illegal transactions.The protection of the site was broken due to uploading of a piece of malware by using a technique known as SQL injection. The data including personal email addresses and passwords of users, which were acquired illegally, is now being sold at Dark Web.

Hackers used the malware to gain access to the server from where they could steal the data without anybody's knowledge and later conceal some of their paths.

It poses risk for all victimized users because they are exposed to cybercrime without their knowledge. This kind of attacks which can be created from stolen data from website of Faithless which includes basic phishing emails and hackers mange to tie their emails or username with other online accounts with more complex social engineering tricks.

SQL injection errors have been existence for more than a decade. In fact, an app security firm Veracode, audited more than 50,000 enterprise applications and found that one in every five had minimum one such vulnerability.

Elad Ben-Meir, marketing vice president of CyberInt, said that Cyber threat intelligence was collected in absolute time through our system, and as a major aspect of our work, they had revealed that a database of Faithless being sold on the Dark Web, and they had flagged it up with them. He further added that he thinks that they have settled the issue; however they didn't exactly go out to inform anybody about that, thus it leaves their fans, around 18,000 individuals, ignorant that their private data are compromised.

IT leaders should now start ensuring compliance.

» SPAMfighter News - 1/21/2016

3 simple steps to update drivers on your Windows PCSlow PC? Optimize your Slow PC with SLOW-PCfighter!Email Cluttered with Spam? Free Spam Filter!

Dear Reader

We are happy to see you are reading our IT Security News.

We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!

Go back to previous page
Next