Philippine police make an arrest in the Commission on Elections (Comelec) hack that compromised some 55 million voter records. The Manilla Bulletin and the International Business Times are reporting that the person arrested was known as a white-hat hacker committed to responsible disclosure. The hack hasn’t halted elections; they’re being held on schedule.
Mexican authorities are dealing with public exposure of 93 million voters’ data. A misconfigured MongoDB has apparently been sitting on an Amazon Web Services account since September 2015. The data were pulled this morning, according to Salted Hash.
JIGSAW and CryptXXX ransomware continue to find victims. The surge in ransomware seems correlated with higher levels of Nuclear exploit kit use.
Cisco has patched several of its products, most prominently denial-of-service vulnerabilities in wireless LAN controllers. Earlier this week Oracle released 136 patches for a wide variety of offerings.
In industry news, SecureWorks priced its initially public offering last night. Stock will initially be offered at $14 per share, somewhat lower than the expected $15.50-$17.50. SecureWorks will trade under the SCWX ticker symbol.
Chip-and-PIN technology is coming to US retail, but not without recriminations. Merchants complain that card companies are too slow in certifying EVM software.
FireEye suggests that China may really have backed away from hacking for economic advantage. The country’s strategic shift away from manufacturing appears to lie behind the change.
The FBI paid at least $1.3 million for a zero-day that let them access the San Bernardino jihadist’s iPhone. The Bureau considers it a bargain.