Cybersecurity Highlights

This section registers the most relevant incidents or public events related to the cybersecurity and information and communication technologies (ICT), in a way that a chronological history of them is available, together with their main links, references and information sources.

Post related to: Transport

OAuth vulnerabilities affect Booking.com

Salt Labs, the research division of Salt Security, has reported several critical vulnerabilities in the implementation of the Open Authorization (OAuth) login functionality used by Booking.com,...

References:

salt.security

infosecurity-magazine.com

darkreading.com

csoonline.com

securityboulevard.com

Tags:

Carmakers update software due to viral challenge

Hyundai and Kia have been forced to develop a free update to their vehicles' anti-theft alarm software logic as a result of a viral TikTok challenge, KIA Challenge, as millions of their vehicles...

References:

nhtsa.gov

theverge.com

washingtonhispanic.com

eleconomista.es

Tags:

Social networks

Transport

Vulnerability

Information leak on Toyota's supplier portal

Toyota's GSPIMS (Global Supplier Preparation Information Management System), a web-based application used by Toyota employees and its suppliers for coordination and other tasks related to the brand...

References:

eaton-works.com

bleepingcomputer.com

securityweek.com

portswigger.net

underc0de.org

ciberseguridadlatam.com

Tags:

Multiple vulnerabilities discovered in luxury cars

Cyber security researchers have detected multiple vulnerabilities in luxury cars such as BMW, Roll Royce, Mercedes-Benz, Ferrari, Porsche, Jaguar, Land Rover, Ford, KIA, Honda, Infiniti, Nissan,...

References:

samcurry.net

cybernews.com

itpro.co.uk

techradar.com

Tags:

Transport

Vulnerability

Teqtivity data leak affects Uber

Teqtivity, a company that provides asset management and tracking services for businesses, has officially notified that its customer data has been compromised due to unauthorised access to its...

References:

teqtivity.com

bleepingcomputer.com

theregister.com

infosecurity-magazine.com

bitlifemedia.com

Tags:

Denmark's rail transport paralysed due to cyberattack

DSB (Discover Denmark by train) has been forced to shut down rail traffic in the country where it operates, Denmark, due to a security breach in a critical application affecting its operations....

References:

reuters.com

securityweek.com

larazon.es

securityaffairs.co

cybernews.com

Tags:

Cybercrime

Incident

Transport

US airport websites hit by DDoS

The cybercriminal group KillNet has claimed responsibility for distributed denial of service (DDoS) attacks that took down the websites of several US airports, including those in Los Angeles,...

References:

govinfosecurity.com

bleepingcomputer.com

scmagazine.com

elespanol.com

Tags:

Information leak at American Airlines

American Airlines has notified customers of a security incident in July 2022, after attackers compromised a limited number of employee email accounts and gained access to sensitive personal...

References:

media.dojmt.gov

bleepingcomputer.com

cyberscoop.com

npr.org

20minutos.com

Tags:

Uber cybersecurity incident

Uber has released an official statement, acknowledging that it has been the victim of a cyber-attack due to the compromise of a third-party contractor's account through malware infection of the...

References:

uber.com

businessinsider.es

eldiario.es

elconfidencial.com

genbeta.com

bleepingcomputer.com

Tags:

Yodel delivery company disrupted by cyberattack

Yodel, a leading UK-based delivery services company, has officially reported a disruption to its services due to a cyberattack on its systems.It says it is working to restore operations as soon as...

References:

yodel.co.uk

twitter.com

itpro.co.uk

zdnet.com

bleepingcomputer.com

computerweekly.com

theregister.com

Tags:

Corporate access

Cybersecurity Highlights

OAuth vulnerabilities affect Booking.com

Carmakers update software due to viral challenge

Information leak on Toyota's supplier portal

Multiple vulnerabilities discovered in luxury cars

Teqtivity data leak affects Uber

Denmark's rail transport paralysed due to cyberattack

US airport websites hit by DDoS

Information leak at American Airlines

Uber cybersecurity incident

Yodel delivery company disrupted by cyberattack

Pages