- Friday, 02 October 2015
- Hits: 1671
Patreon attackers drop data, expose users
The attackers that compromised Patreon have dumped the data on various bin sites.
It's perhaps a small irony that one of the dumps has landed on Mega, the Kim Dotcom-founded file-store that calls itself “The Privacy Company”. With 15 GB of data in the drop, there could be a lot of personal details in the leak (Vulture South is happy to leave it to others to pore over the data). Since site source code is apparently included among the compromised data – as Patreon explained, the data leak happened because a debug version of the site ended up outside the firewall – there's a risk that the site's code might help attackers recover the bcrypt-hashed data. Read more...
VBA malware is back!
VBA malware is far from dead. In fact, as Sophos researchers recently noted, approximately 50 to 100 new VBA malware samples are spotted each day.
For those who don't know, VBA (Visual Basic for Applications) is Microsoft's implementation of Visual Basic that's built in many of its software, including its Office suite, and is used for automating tasks. Unfortunately, if the VBA code is malicious and is inserted in, for example, a Word file, it will execute automatically once the file is opened. Read more...