A security breach at WWE exposed personal information of 3 million users. According to reports, the sports entertainment company stored key personal information, including addresses, educational background, earnings and ethnicity, on an unsecured server that anyone could’ve accessed.
The data was sitting on an Amazon Web Services S3 server without username or password protection. It's likely the database was misconfigured by WWE or an IT partner. A WWE spokesperson said the firm was working to determine the cause of the leak.
References: Massive WWE Leak Exposes 3 Million Wrestling Fans' Addresses, Ethnicities And More | WWE Data Breach Exposes 3 Million Accounts | WWE Issues Statement on Security Breach Exposing Fans’ Personal Information
A once-dormant command-and-control server for Flokibot has woken up and begun to distribute a new point-of-sale (PoS) malware family. The new threat, which security researchers call "LockPoS," uses run keys in the Windows Registry to achieve persistence before communicating with its command-and-control server over HTTP.
PoS malware gangs are always developing new strains to target businesses' point-of-sale terminals.
*IP addresses provided by Recorded Future.
Want to learn about Alert Logic products in more detail? Call us direct at +1.877.484.8383, for the UK call +44 (0) 203 011 5533, or complete this form. An Alert Logic representative will contact you soon.