Hackers Say ‘Yo, Musk,’ Poison AskMen.com, Cause iPhone Heartbleed Failure
A screenshot of the Yo app on an iPhone. Yo
Just another week in ThreatWatch, our regularly updated index of noteworthy data breaches.
In case you missed our coverage this week in ThreatWatch, Nextgov’s regularly updated index of cyber breaches:
AskMen.com reroutes readers to malware-laced site
Hackers compromised the homepage of the widely read Ziff Davis publication to redirect visitors to other domains that deliver “Caphaw” malicious code, which can overtake a victim’s computer.
Hackers breach Montana government server housing 1.3 million health records
Only about 1 million individuals live in the state. The affected individuals include residents, people who no longer reside in Montana and people who have died.
Syrian Electronic Army strikes Reuters again – this time through third-party advertiser
Articles on the news agency’s site rerouted readers to a message by the pro-Assad group, after the hackers apparently compromised an ad service used by many major news outlets.
Employee iPhones at UK insurance giant suffer Heartbleed failure
A mobile device management system at Aviva was plundered, purportedly by hackers who exploited the Heartbleed vulnerability, although the system provider denies the bug played a role.
App that simply says Yo now hacked to say a lot more
Georgia Tech students say they can pose as any user -- like a celebrity -- and send the one-word greeting to other, unwitting users. “We can get any Yo user’s phone number (I actually texted the founder, and he called me back.) We can spoof Yos from any users, and we can spam any user with as many Yos as we want. We could also send any Yo user a push notification with any text we want (though we decided not to do that.),” one of the hackers said.
