By Uzair Amir Another day, another trove of sensitive data exposed online. This time, a MongoDB database containing a whopping 43.5GB of the dataset used in marketing campaigns has been left exposed for public access. The data was discovered by Bob Diachenko, an independent security researcher who noted that the database was available on an unprotected MongoDB hosted on Grupo-SMS hosting and […] This is a post from HackRead.com Read the original post: 11 million personal unprotected MongoDB records leaked online
By Carolina There is little doubt that technology has influenced people’s lives in many ways. Not only are you more likely to have a mobile phone in your pocket, but you are also likely to use the internet many times per day. While technology has brought a lot of great ideas to business and the way people […] This is a post from HackRead.com Read the original post: Exploring the Way Technology Has Changed Entertainment
By Waqas Android is one of the most vulnerable mobile operating systems with hackers developing new Android malware and banking trojan every 17 seconds. Then, there is Google and questionable security measures to protect users from sophisticated and persistent malware attacks. Recently, Lukas Stefanko, an IT security researcher at ESET has discovered a nasty piece of banking trojan targeting […] This is a post from HackRead.com Read the original post: Banking trojan found in call recorder app on Play Store – stole over €10,000
By John Mason If you are a VPN user it is time to come out from the myth that every VPN is here to secure your privacy. Internet censorship is on the rise, and data from Freedom on the Net, based on an annual assessment of the situation of Internet freedom in 65 countries, reveals that not only […] This is a post from HackRead.com Read the original post: Almost Every Major Free VPN Service is a Glorified Data Farm
If you’re thinking of donating money to help victims of Hurricane Florence, please do your research on the charitable entity before giving: A slew of new domains apparently related to Hurricane Florence relief efforts are now accepting donations on behalf of victims without much accountability for how the money will be spent.
For the past two weeks, KrebsOnSecurity has been monitoring dozens of new domain name registrations that include the terms “hurricane” and/or “florence” and some word related to support (e.g., “relief,” “assistance,” etc.). Most of these domains have remained parked or dormant since their creation earlier this month; however, several of them became active only in the past few days, directing visitors to donate money through private PayPal accounts without providing any information about who is running the site or what will be done with donated funds.
Among the earliest of these is hurricaneflorencerelieffund-dot-com, registered anonymously via GoDaddy on Sept. 13, 2018. Donations sent through the site’s PayPal page go to an email address tied to the PayPal account on the site (info@hurricaneflorencerelieffund-dot-com); emails to that address did not elicit a response.
Sometime in the past few days, several other Florence-related domains that were previous parked at GoDaddy now redirect to this domain, including hurricanflorence-dot-org (note the missing “e”); florencedisaster-dot-org; florencefunds-dot-com; and hurricaneflorencedonation-dot-com. All of these domains include the phone number 833-FLO-FUND, which rings to an automated system that ultimately asks the caller to leave a message. There is no information provided about the organization or individual running the sites.
The domain hurricaneflorencedisasterfund-dot-com has a slightly different look and feel, invokes the name of the Red Cross and also includes the 833-FLO-FUND number. Likewise, it accepts PayPal donations tied to the same email address mentioned above. It claims “80% of all donations go directly to FIRST RESPONDERS in North & South Carolina!” although it provides no clear way to verify that claim.
The domain hurricaneflorencerelief-dot-fund, registered on Sept. 11, also accepts PayPal donations with minimal information about who might benefit from monies given. The site links to Facebook, Twitter and other social network accounts set up with the same name, although none of them appear to have any meaningful content. The email address tied to that PayPal account — firstname.lastname@example.org — did not respond to requests for comment.
The domain theflorencefund-dot-com until recently also accepted PayPal donations and had an associated Twitter account (now deleted), but that domain recently changed its homepage to include the message, “Due to the change in Florence’s path, we’re suspending our efforts.”
Here is a Google spreadsheet that tracks some of the domains I’ve been monitoring, including notations about whether the domains are active and if they point to sites that ask for donations. I’ll update this sheet as the days go by; if anyone has any updates to add, please drop a comment below. All of the domains mentioned above have been reported to the Justice Department’s National Center for Disaster Fraud, which accepts tips at email@example.com.
Let me be clear: Just because a site is listed here doesn’t mean it’s a scam (or that it will be). Some of these sites may have been set up by well-intentioned people; others appear to have been established by legitimate aid groups who are pooling their resources to assist local victims.
For example, several of these domains redirect to Freedomhouse.cc, a legitimate nonprofit religious group based in North Carolina that accepts donations through several domains that use an inline donation service from churchcommunitybuilder.com — a maker of “church management software.”
Another domain in this spreadsheet — florencereliefeffort.org — accepts donations on its site via a third party fundraising network Qgiv.com. The site belongs to a legitimate 501(c)(3) Muslim faith-based nonprofit in Raleigh, N.C, that is collecting money for Hurricane Florence victims.
If you’re familiar with these charities, great. Otherwise, it’s a good idea to research the charitable group before giving them money to help victims.
As The New York Times noted on Sept. 15, one way to do that is through Charity Navigator, which grades established charities on transparency and financial health, and has compiled a list of those active in the recovery from Florence. Other sites like GuideStar, the Better Business Bureau’s Wise Giving Alliance and Charity Watch perform similar reviews. You can find more details about how those sites work here.
Finally, remember that phishers and malware purveyors love to seize on the latest disasters to further their schemes. Never click on links or attachments in emails or social media messages that you weren’t expecting.
By Waqas Unfortunately, unsuspected freelancers are falling for the malware scam. Fiverr and Freelancer.com are two of the most popular websites for freelancers and clients looking for skilled professionals. Currently, both sites have millions of registered users from hundreds of countries and that makes them lucrative targets for cybercriminals. Recently, security researchers at MalwareHunterTeam have discovered a new piece of […] This is a post from HackRead.com Read the original post: Malware hits Freelancers at Fiverr and Freelancer.com
By Carolina If you are looking for a list of updated and best movie streaming sites then you have come to the right place. In this article, we have listed free movie streaming sites providing top-notch service with as few ads as possible. Enjoy! SeeHD.uno SeeHD.uno is one of the best movie streaming sites. It was launched in 2017 […] This is a post from HackRead.com Read the original post: Best Free Online Movie Streaming Sites for 2018
By Waqas Dark Web has become a business hub for malicious hackers and cybercriminals. It seems like there is nothing that is spared from the prying eyes of cybercriminals and the Dark Web has become a thriving ground for all types of illegally acquired data and criminals activities. However, this time around researchers from CompariTech haven’t identified […] This is a post from HackRead.com Read the original post: Thousands of stolen frequent flyer miles of top airlines sold on Dark Web
By Waqas Scan4You was a VirusTotal like platform used for malicious purposes. A 37-year old male from Riga, Latvia has received 14 years sentence for creating and running Scan4You, a counter antivirus service that aided malware developers to check detection rates of their malicious software. The convict has been identified as a Latvian non-citizen namely Ruslan Bondars […] This is a post from HackRead.com Read the original post: Hacker gets 14 years jail time for operating Scan4You malware scanning service
By Waqas Zaif is the 35th largest cryptocurrency exchange by turnover. Hackers have stolen a whopping $60 million (6.7 billion yen) worth of cryptocurrency from Zaif, the 35th largest cryptocurrency exchange dealing in Bitcoin, Bitcoin Cash, and Monacoin. The exchange is owned by Tech Bureau, Corp. based in Nishi-Ku, Osaka, Japan. The hack attack took place on September 14th after hackers gained […] This is a post from HackRead.com Read the original post: Hackers steal $60 million from Japan's Zaif cryptocurrency exchange
Our Standard Office Hours
Monday – Friday: 8:00AM – 5:00PM EDT
Saturday – Sunday: Closed
Where to Find Us
Data Privacy Notice
- – All product names, logos, and brands are property of their respective owners.
- – The use of these names, logos, and brands is for identification purposes only and does not imply endorsement.
- – Content syndication and aggregation of public information is solely for the purpose of identifying information security trends, all syndicated content contains source links to the content creator website. All content is owned by it’s respective content creators.
- – If you are an owner of some content and want it to be removed, please email firstname.lastname@example.org