A large database containing information on 154 million US voter profiles seems to have leaked online. The database was found by MacKeeper researcher Chris Vickery. It’s now been taken down and is no longer exposed. The information appears to have originated with data broker L2, which believes it was compromised by a breach at an "unnamed national client."
Tech support scammers have added a fresh approach as their cold calls meet an increasingly skeptical reception: pop-ups purporting to be from a user’s ISP.
GozNym is reported to be employing redirection attacks as the banking Trojan hits services in the US.
Rapid7 reports that the open-source API framework Swagger suffers from an unpatched remote-code execution vulnerability.
Crytpo-ransomware has now far outstripped its older, cruder screen-blocking rivals. Kaspersky says it accounted for some 54% of extortion malware observed in April, up from 10% a year ago. Two other bits of news appear with respect to ransomware: Emsisoft has released a decryption tool for ApocalypseVM, and TeslaCrypt remains out of service. No one’s complaining about TeslaCrypt’s disappearance, but researchers find it baffling: why would criminals abandon a tool still able to make them money?
In industry news, observers think Symantec’s Blue Coat buy may lift cyber sector stocks and spur more M & A. SecurityScorecard raises $20 million in venture capital. Everyone awaits tomorrow’s expected announcement of the Brexit vote’s results.
More expansive online investigation stalls in the US Senate.
Investigators say State reduced network security temporarily to accommodate then-Secretary Clinton’s home server.
A note to our readers: our report on yesterday's Cyber 7.0 conference will appear with tomorrow's issue.