Sunday, September 26, 2021

Cyber Security Today: Big hack of Canvas graphics site, insurer leaves documents open, ransomware going after databases

Big hack of Canvas graphics site, insurer leaves documents open and ransomware going after databases.

Welcome to Cyber Security Today. It’s Wednesday May 29th. I’m Howard Solomon, contributing reporter on cyber security for ITWorldCanda.com.

To hear the podcast, click on the arrow below:

 

Cyb er Security Today on Amazon Alexa Cyber Security Today on Google Podcasts Subscribe to Cyber Security Today on Apple Podcasts

One of the world’s most prolific hackers has apparently struck again. A person or group calling themselves GnosticPlayers says they have stolen data of 138 million users of an online graphics site called Canvas. The ZDNet news service says it verified at least some of the stolen data. Canvas has acknowledged being hacked. Stolen data included customer usernames, real names, email addresses, and city and country information and passwords. However, those passwords were scrambled and well protected. Canvas owns the stock images sites Pexels and Pixabay, but apparently they were not hacked. Since February GnosticPlayers has taken credit for putting up for sale stolen data of 932 million users. Companies are still not doing enough to protect themselves or their partners from being hacked.

Here’s another example: A few days ago security reporter Brian Krebs reported that the web site of a huge U.S. real estate title insurance company called First American Financial Corp. wasn’t secured right. As a result anyone could have seen millions of documents with personal information relating to mortgage deals going back to 2003. It was an old bungle I’ve reported on before: Companies that make documents available on the Internet give them a number that can be seen in a browser’s address. If you change one digit in the number, you can see another document, and keep on going. It isn’t known if criminals knew about the First American flaw. There are ways to prevent this from happening by restricting who can see documents and by not using a numbered document system.

Sometimes companies get hit with ransomware on desktop computers through email. However, IT staff should note that attacks can be spread through attacks on servers. Security vendor Sophos recently discovered a campaign that goes after vulnerable MySQL databases that are open to the Internet. The infected database then automatically downloads a copy of the ransomware. Sophos thinks 800 copies of the ransomware were downloaded in five days. So database administrators, you’ve been warned.

Finally, this week I’m covering parliamentary hearings in Canada of the International Grand Committee on Democracy, Big Data and Privacy. It spent a lot of Tuesday grilling officials from Google, Facebook and Twitter. Hard to summarize it all in a short podcast, but if you go to ITWorldCanada.com you’ll find my news stories. The companies were given a rough ride and you might find their answers interesting.

That’s it for Cyber Security Today. Links to details about these stories can be found in the text version of each podcast at ITWorldCanada.com. That’s where you’ll also find my news stories aimed at businesses and cyber security professionals. Cyber Security Today can be heard on Mondays, Wednesdays and Fridays. Subscribe on Apple Podcasts, Google Podcasts or add us to your Flash Briefing on your smart speaker. Thanks for listening. I’m Howard Solomon

 

Would you recommend this article?

Share

Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication. Click this link to send me a note →

Jim Love, Chief Content Officer, IT World Canada
Howard Solomon
Howard Solomon
Currently a freelance writer, I'm the former editor of ITWorldCanada.com and Computing Canada. An IT journalist since 1997, I've written for several of ITWC's sister publications including ITBusiness.ca and Computer Dealer News. Before that I was a staff reporter at the Calgary Herald and the Brampton (Ont.) Daily Times. I can be reached at hsolomon [@] soloreporter.com

Related Tech News