Cloudflare, an internet service provider that manages 10 percent of all web traffic, has been leaking assorted bits of customer information — passwords, cookies, personal information, messages and more — since a bug appeared in their code in September 2016. A bug that went undetected for years, but was itself blocked from leaking data by the way Cloudflare had configured its service. The company recently made some changes to its software, and those changes allowed the bug to begin leaking private data in a way it hadn’t previously done.
The issue was fixed last Friday, and Cloudflare recommends to change your passwords to avoid being put at risk and to keep an eye on your accounts to watch for suspicious activity.
References: Headache for Cloudfare and Potentially Some Clients Over Data Leak | Bug Causes Personal Data Leak, but No Sign of Hackers Exploiting: Cloudflare | Cloudflare Data Leak Potentially Exposed Trove of Passwords, Personal Information for Months
Two Italian citizens were arrested last Tuesday by Italian authorities for exfiltrating sensitive data from high-profile Italian targets. Authorities said more than 18,000 email accounts had been compromised and 87 gigabytes worth of data had been stolen.
The attacks had been carried out since at least 2010 and they relied on a piece of malware dubbed EyePyramid. The malware was spread using spear-phishing emails and the level of sophistication is low. However, the malware is flexible enough to grant access to all the resources on the victim’s computer. Although the Italian Police Report doesn’t include malware hashes, it identified a number of C&C servers and e-mails addresses used by the malware for exfiltration of stolen data.
*IP addresses provided by Recorded Future.
Want to learn about Alert Logic products in more detail? Call us direct at +1.877.484.8383, for the UK call +44 (0) 203 011 5533, or complete this form. An Alert Logic representative will contact you soon.