Nearly 375,000 Duke Energy Corp. customers were affected by a third-party data breach dating back to 2008. Duke Energy’s partner and payment processor is TIO Networks, in which Duke Energy makes up nearly 1.6 million of TIO’s customer base. This breach affects anyone who paid their bill in one of the 550 payment processing centers across North Carolina, Indiana, Ohio, Kentucky, and Florida.
Evidence was discovered during the TIO Networks acquisition with PayPal Holdings Inc back in July. Personal identifiable information (PII) in the incident includes names, addresses, electricity account numbers and banking information if payments were made by check. TIO Networks is sending out letters to notify those affected.
A new IoT botnet has emerged as the successor of last year’s infamous Mirai botnet. Dubbed by the Qihoo 360 Netlab researchers as "Satori", this botnet mutation acts as a IoT worm, using 2 exploits to attempt to connect to with devices on ports 37215 and 52869 instead of searching for vulnerable routers. Century Link's Chief Security Strategist Dale Drew explains that the botnet “has already infected 2 widely-used types of home routers, even when secured by strong passwords."
The botnet recently infected over 280,000 IP addresses in just 12 hours. Drew has warned “Satori’s operators could potentially launch an internet-crippling DDoS attack at any time.” Researchers are still gathering more information about the Satori botnet through tracked activities.
Check out our new blog posts, plus you can follow the blog on our social media outlets.
*IP addresses provided by Recorded Future.
Want to learn about Alert Logic products in more detail? Call us direct at +1.877.484.8383, for the UK call +44 (0) 203 011 5533, or complete this form. An Alert Logic representative will contact you soon.