Apple’s Fingerprint Scanner Not So Un-Hackable After All
A group of German hackers claimed to have cracked the iPhone fingerprint scanner on Sunday… sorry Apple.
Chaos Computing Club, or CCC, one the world’s largest and most respected hacking groups, posted a video on its website that appeared to show somebody accessing an iPhone 5S with a fabricated print. The site described how members of its biometrics team had cracked the new fingerprint reader, one of the few major high-tech features added to the latest version of the iPhone.
The group said they targeted Touch ID to knock down reports about its “marvels,” which suggested it would be difficult to crack.
“Fingerprints should not be used to secure anything. You leave them everywhere, and it is far too easy to make fake fingers out of lifted prints,” a hacker named Starbug was quoted as saying on the CCC’s site.
Celebrities’ Financial Info Hacked
An unidentified man hacked every single celebrity you can think of and released all their financial information. And when I say all of it, I mean ALL of it.
“Twelve big celebs and political figures are the victims of a hacker who has posted detailed information about what appears to be their finances … and we’ve learned law enforcement is on the case. A website — we’re not disclosing the name — has posted social security numbers, mortgage amounts, credit card info, car loans, banking and other info of major celebs. In addition to Beyonce and Jay-Z … the site has snagged financial dossiers of Kim Kardashian, Paris Hilton, Mel Gibson, Ashton Kutcher, Joe Biden, Robert Mueller, Hillary Clinton, Eric Holder and LAPD Chief Charlie Beck. The site was not able to get a lot on Joe Biden or Hillary Clinton, but most of the others on the list have had their financial info compromised. Law enforcement sources tell TMZ … the LAPD has already launched an investigation. We’re told the FBI is looking into it.”
And that’s not everyone, so far Britney Spears, Hulk Hokan, Donald Trump, and Michelle Obama have also been hacked.
Anonymous, Is That You? Millions Of GoDaddy Websites Down
Millions of GoDaddy websites went down yesterday and the hosting giant is investigating why.
“GoDaddy did experience some intermittent outages, and it impacted our site and some customer sites,” said a spokeswoman. “Some are already back online.” But customers who only registered domain names with GoDaddy—without buying a hosting service—are also being affected, which could significantly widen the scope of the shutdown.
A member of hacking collective Anonymous is taking responsibility for the downed websites. “I’m taking godaddy down because well i’d like to test how the cyber security is safe and for more reasons that i can not talk now,” tweeted AnonymousOwn3r. GoDaddy has been at the center of a few controversies and had to be pressured into supporting SOPA, but AonomyousOwn3r claims the attack was not motivated by animosity: “I’m not anti go daddy, you guys will understand because i did this attack.”
Hackers Claim To Have Romney’s Tax Return
Romney looks like the guy who ‘doesn’t negotiate with terrorists’ but he might want to reconsider: An unidentified team of hackers say they’ve stolen Mitt Romney’s tax returns and will make them public unless his campaign forks out $1 million in “ransom.” The hackers say they made off with Romney’s pre-2010 returns after gaining access to a PriceWaterhouseCoopers office in Tennessee, reports Mashable. They have threatened to make the returns public unless they receive the payoff in the hard-to-trace BitCoin online currency by Sept. 28.
Please let it be true.
The hackers say they sent flash drives containing copies of the returns to Democratic and Republican party offices. The Secret Service is investigating the claims, and has seized flash drives received at the offices, reports the Nashville City Paper. Officials at both offices say they made no attempt to access the information on the flash drives. A spokesman for PriceWaterhouseCoopers says the company is working closely with the Secret Service, and managers haven’t discovered any evidence of unauthorized access to Romney’s returns.
AntiSec Hacks FBI… Gets 12M Apple User IDs
Hacker collective AntiSec broke into an FBI laptop, where it found 12 million unique identifying numbers for Apple devices. And what did they do with them? Publish them online of course.
The group, who in the past refrained from leaking more sensitive information such as users’ names and phone numbers, believe the FBI was collecting the data to track users and decided to make it public.
The FBI agent reportedly targeted has previously called on hackers to team up with the agency. Based on hackers’ account of the breach, The Next Web surmises that the UDIDs may have been linked to a cyber-crime investigating unit called the National Cyber-Forensics & Training Alliance.
Click here to find out whether your device was among those whose details were leaked.
Have A LinkedIn Account? Better Go Change Your Password
A hacker claims to have stolen 6.46 million LinkedIn passwords and posted the list online as proof.
The list—announced on a Russian forum—appears to be real, an expert says; users tell ZDNet that they have indeed found their passwords on the list.
LinkedIn’s encryption system is “secure,” so it may take a while to decode the information, but it’s not “foolproof,” the Verge notes. Hackers may also have gotten their hands on email addresses, a Finnish security firm says. Experts recommend users change their passwords now. LinkedIn says it’s “looking into” the reports.
Hacker group gets credit card info of 70,000 porn site users
A group of hackers calling themselves The Consortium is claiming to have accessed user data of over 70,000 users of the pornography website Digital Playground, according to Adult Video News.
The group also claims to have the credit card data — including names, expiration dates and CVV codes — for more than 40,000 of the members, but that it’s not planning on using or releasing the information.
“…[W]e do this for the love of the game not for profit,” a message purportedly written by the group said, according to the blog Naked Security, “and these peoples [sic] only crime was wanting some porn.”
In response, Luxembourg-based Manwin, the parent company of Digital Playground, shut down the site on March 5. While Digital Playground is currently live again for existing members, it is not accepting any new users.
“The site is currently operational for members and will be fully operational before the end of the week,” Kate Miller, a spokesperson for Manwin, told sources.
Google offers $1 million to anyone who finds Chrome bugs
Let the game begin… Google is challenging hackers to find holes in its Chrome browser—with a nice incentive. The company is offering a total of $1 million in prizes to people who can find bugs or vulnerabilities in Chrome at next week’s CanSecWest security conference in Vancouver, reports Wired.
Hackers stand to win $60,000 for a “full Chrome exploit” using only bugs found in Chrome, $40,000 for a “partial exploit” using a Chrome bug plus a bug elsewhere, or a $20,000 “consolation reward” for a Chrome hack using bugs found in Flash or Windows.