Ticketmaster breach, Netflix bounties, FREE Cisco training + More

Author

InfoSec Sam
June 02, 2024

This week's newsletter

Recent News

Not The Ticket 

Ticketmaster has experienced a massive data breach!

Hacking group ShinyHunters has taken responsibility for stealing over 500 million user records from the ticketing platform. To make matters worse, not only is Ticketmaster in the midst of a massive data breach but they are also facing a class action lawsuit as a result.

ABN Amro Oh No!

A data breach at Dutch bank ABN Amro has resulted in the exposure of sensitive customer information. The breach occurred due to a ransomware attack on one of the bank’s third-party services providers, AddComm.

This incident sheds light on the risks presented by working with third-party suppliers and the need for gaining assurance of effective third-party security controls.

Christie’s Continues

More ransomware news. Christie's, a renowned auction house, faced a ransomware attack, but still managed to hold two major sales, totalling $115 million!

Ransomware attacks continue to be prevalent but this event highlights the resilience of businesses in the face of cyber threats and the importance of having strong security measures in place.

Wordpress Woes

Critical WordPress plugin flaws have been found to be exploited in the wild. The flaws can be exploited to execute unauthenticated stored cross-site scripting (XSS) attacks. This allows the attackers to create a new WordPress administrator account, inject backdoors in plugin and theme files, and set up tracking scripts to monitor the infected targets.

The vulnerable plugins include WP Statistics, WP Meta SEO, and LiteSpeed Cache which have over 600,000 active installations! Get patching!

Other News

  • Political Pain - Hundreds of European politicians' information has been found on the dark web including over 900 emails and nearly 700 exposed passwords.

  • s(NO)wflake - Snowflake, a cloud computing based data cloud company has denied claims of a security breach despite data theft from Ticketmaster and Santander.

  • Netflix Bounties - Netflix has paid out over $1 million in bug bounties since 2016. If you’re interested in penetration testing checkout bug bounties on sites such as HackerOne.

Career Development

FREE Cisco Cybersecurity Training

Cisco is offering free introduction to cybersecurity training. This is 6 hours worth of fully online self-paced learning which is part of Cisco’s Junior Cybersecurity Analyst career path and consistis of the following modules:

Sign up for this training at the following link:

Subscribe to keep reading

This content is free, but you must be subscribed to InfoSecSam's Newsletter to continue reading.

I consent to receive newsletters via email. Terms of use and Privacy policy.

Already a subscriber?Sign in.Not now