Planet Ice, which operates 14 ice rinks up and down the UK, has revealed that
criminal hackers managed to break into its systems and steal the personal
details of over 240,000 customers.

The first hint most skating and ice hockey fans saw that there could be a
problem occurred at the start of last week, when their attempts to book tickets
online were met with a terse message explaining that Planet Ice’s servers were
“experiencing unplanned server downtime.”

In the following days, some customer

QNAP has issued an urgent patch to users of its network attached storage
solutions, rating a newly reported flaw as “critical.”

The Taiwan-based tech giant deals with storage, networking and smart video
innovations. It is a leader in network attached storage (NAS) and professional
network video recorder (NVR) solutions.

The popularity of its NAS products hasn’t been overlooked by hackers. QNAP NAS
users have been hot targets
[https://www.bitdefender.com/blog/hotforsecurity/qnap-nas-users-targe

A security researcher discovered a two-factor authentication bypass
vulnerability that affected Instagram and Facebook, netting him a $27,000 bug
bounty. Other security researchers found similar problems and received even
higher bounties.

Many companies offer cash to researchers who unearth critical vulnerabilities
before criminal can find and exploit them. It’s a valuable way for companies to
improve products and online services, which is precisely what happened with the
vulnerabilities discov

About 400 parents of students attending Mount Lilydale Mercy College, a Catholic
high school near Melbourne, Australia, were recently informed of a cyberattack
that exposed their credit card details.

According to a local news outlet, the Australian Federal Police (AFP) notified
school officials of unauthorized access to their network on Jan. 11.

The investigation revealed that the parents, including those of former students,
had their credit information (excluding CVV numbers) stolen in the ha

GitHub, the popular software development and version control hosting platform,
recently disclosed a security incident involving stolen code-signing
certificates.

Unknown threat actors acquired three encrypted certificates: two Digicert
certificates used to sign Windows apps and another Apple Developer ID
certificate.

Although the certificates don’t jeopardize any installed versions of GitHub
Desktop for Mac and Atom, GitHub warns that decrypting them could let criminals
sign unofficial applica

In this demonstration, you learn how to create and configure a new Android MDM policy for Android Enterprise managed devices, which is based on the default policy, in the MaaS360 portal. Duration: 4 MinutesFollow the link in related information to view…

Russian hackers are being blamed for an attempted phishing attack against the
Latvian Ministry of Defence.

Gamaredon, a Russian state-sponsored cyberespionage group, used a domain name
(admou[.]org) previously linked to the gang in previous attacks
[https://unit42.paloaltonetworks.com/trident-ursa/] designed to steal
information and gain access to networks run by Ukraine and its allies.

Researchers at French security outfit Sekoia explained
[https://twitter.com/sekoia_io/status/161753628308108

If you’ve purchased trainers from sports fashion retailer JD Sports in the past,
your personal details could now be in the hands of hackers.

Customers of the UK high street retailer (as well as sister firms Millets,
Blacks, Size?, Scotts, and Millets Sports) are being contacted with a warning
that cybercriminals have accessed details of orders made between November 2018
and October 2020.

10 million people are thought to have been impacted by the security breach,
which has put at risk customers