ICYMI: Michael page CV leak; Barclays vulnerability; Tesco hack; Russia's Microsoft probe; Talk Talk conviction

News by SC Staff

In this week's In Case You Missed it we look at: Capgemini leaks 780,000 Michael Page job candidate CVs; Barclays LFI vulnerability; Tesco hack details?; Microsoft investigated in Russia; Talk Talk 17 yr old convicted

Capgemini leaks 780,000 Michael Page job candidate CVs

UK-based international recruitment firm Michael Page has had a database of 780,000 of its job applicants from around the world accidentally leaked by consulting firm Capgemini.

The data has been revealed by password-collector Troy Hunt, who received a 30GB archive from the same person who disclosed to him the data from the Australian Red Cross. According to Hunt, the data includes names, email addresses, cover letters, and job history of the firm's employment candidates. More

LFI vulnerability allegedly found in website of Barclays/RBS

A hacker going by the name of CyberZeist informed SCMagazineUK that he had found a Local File Inclusion vulnerability in the website of "many UK banks".  He provided screenshots of his attack on Twitter, for the websites of Barclays and Royal Bank of Scotland, the former hosted on an Allianz insurance site.

Describing himself as a BlackHat, CyberZeist told SCMagazineUK.com that he plans to, “use the exploit to steal data”, after which “half will be leaked online” and, “the other half will be up for sale for Bitcoins.” More

How long must we wait for Tesco to reveal cyber-heist attack data?

The Tesco Bank cyber-heist was Britain's biggest attack to date but the information on how the attack was perpetrated is not being shared with those who need to know, reports Davey Winder.

Tesco Bank has been robbed, with some 9000 current account holders losing an average of £250 each if the £2.5m total loss figure is accurate. Tesco Bank itself knows the exact numbers, and CEO Benny Higgins says he knows the precise attack mechanism as well. He's not telling us, though. More

Updated: Russia launches probe into Microsoft after Kaspersky accusations

The Russian Federal Antimonopoly Service has launched a probe into Microsoft after Eugene Kaspersky of Kaspersky Lab made several accusations about Windows 10, accusing Microsoft of cutting out independent security companies by privileging Microsoft security products within Windows 10.

Russian law enforcement is launching a probe against Microsoft for antitrust violations. The FAS, Russia's Federal Antimonopoly Service are apparently investigating the global tech giant after Eugene Kaspersky his accusations. More

17-year-old pleads guilty to offences linked to TalkTalk hack

A 17-year-old boy has pleaded guilty to hacking offences which are linked to the data breach at the telecoms company TalkTalk in October 2015. The boy, who cannot be named as he is underage, has admitted to seven charges under the UK Computer Misuse Act 1990 and will be sentenced on 13 December.

The teen was arrested in Norwich last November after an investigation by the Metropolitan Police Cyber-Crime Unit.  More

Find this article useful?

Get more great articles like this in your inbox every lunchtime

Video and interviews