Top 10 Stories

Vacation-booking biz Orbitz has warned that sensitive details on as many as 880,000 credit cards have "likely" been stolen from its servers by hackers. In a statement today, US-based Orbitz said it discovered evidence of an intrusion on one of its legacy platforms on March 1, and called in a third-party forensics team. It now looks as though its central booking system was penetrated – and names, payment card information, dates of birth, phone numbers,...

Vacation-booking biz Orbitz has warned that sensitive details on as many as 880,000 credit cards have "likely" been stolen from its servers by hackers. In a statement today, US-based Orbitz said it discovered evidence of an intrusion on one of its legacy platforms on March 1, and called in a third-party forensics team. It now looks as though its central booking system was penetrated – and names, payment card information, dates of birth, phone numbers,...

The Windows Remote Assistance tool that ships with all Windows distributions can be can be abused for clever hacks in targeted attacks. Belgian security researcher Nabeel Ahmed discovered a vulnerability in this tool in February last year and reported it to Microsoft in October. A patch for the issue —tracked as CVE-2018-0878— was included with the March 2018 Patch Tuesday, released last week. View full story ORIGINAL SOURCE: Bleeping Computer

For governments worldwide, encryption is a thorn in the side in the quest for surveillance, cracking suspected criminal phones, and monitoring communication. Officials are applying pressure on technology firms and app developers which provide end-to-end encryption services provide a way for police forces to break encryption. View full story ORIGINAL SOURCE: ZDNet

For governments worldwide, encryption is a thorn in the side in the quest for surveillance, cracking suspected criminal phones, and monitoring communication. Officials are applying pressure on technology firms and app developers which provide end-to-end encryption services provide a way for police forces to break encryption. View full story ORIGINAL SOURCE: ZDNet

Twitter users are collectively being conned out of tens of thousands of dollars per day via fraud schemes involving accounts impersonating celebrities, including Elon Musk and Vitalik Buterin, the man behind the Ethereum cryptocurrency. The scam is elegant in its simplicity: When a verified account of a celebrity posts a tweet, a fraud account using the same image and display name simply responds, with an offer to give away the Ethereum cryptocurrency. The scam tweets...

It is just another day with just another ATM malware targeting unsuspecting users – This time, the malware comes with cloning capabilities. According to the findings of Kaspersky Lab researchers, an old point-of-sale malware program Prilex has now been transformed into a full-fledged tool suite that allows cyber-crooks steal PIN card and chip data for creating their own plastic cards to conduct frauds. Previously, Prilex was used to steal cash and payment card information from...

Artificial intelligence (AI) has worked its way into a variety of industries, from the obvious (autonomous vehicles) to the hidden (anti-money laundering due diligence). But according to a new report from Tractica, while organizations are clearly recognizing the value associated with incorporating AI into their business processes, they are also encountering a number of challenges with integrating this new intelligence into operational processes. View full story ORIGINAL SOURCE: Help Net Security

One of every 200 Google search autocomplete suggestions are poisoned and are used to drive traffic to misleading sites, to malware, or other malicious content, a team of academics from three US universities has discovered. This is one of the most recent types of blackhat search engine optimization (BHSEO) techniques observed in the wild. View full story ORIGINAL SOURCE: Bleeping Computer

Millions of National Lottery players have been urged to change their passwords following what parent company Camelot describes as "suspicious activity" involving lottery accounts. Camelot, which runs the National Lottery, insists there's been no access to core systems or databases that would affect lottery draws or prizes, but has recommended that its 10.5 million registered users change their passwords following a number of unauthorised logins. View full story ORIGINAL SOURCE: ZDNet