DEED’s jobs website for unemployed Minnesotans hacked

The state’s interactive MinnesotaWorks.net jobs board was hacked this week, prompting Minnesota’s employment officials to warn job seekers their personal information may have been obtained by unauthorized users.

It is not clear how many people had their information hacked.

In a note to job seekers this week, state officials confirmed receiving reports of “suspicious communications” from individuals claiming to be representatives of an approved employer on the state’s MinnesotaWorks.net website.

When the state contacted the employer, it confirmed that the individual or individuals were not employees.

There are no signs the stolen information has been misused to date, Minnesota Department of Employment and Economic Development (DEED) officials said.

“A recent data security incident may have resulted in unauthorized access of jobseekers’ contact information such as physical addresses, email addresses and phone numbers,” they said in a statement.

DEED said it immediately revoked the hacker’s access to the website and notified an undisclosed number of job seekers about the incident. DEED also issued advice on what steps website users could take to protect their personal information and prevent identity theft.

In its letter to people who use the website to apply for jobs, DEED said the hackers might ask for additional private information and advised that people not respond to those communications.

“If you receive any suspicious request for private information about yourself, please remain careful about what information you share,” the letter said.

People affected by the data breach or who have questions can contact the state at [email protected].

Those impacted by the data breach are also instructed to regularly check their credit reports, which are kept by the three consumer-credit reporting agencies. Copies may be obtained by contacting www.annualcreditreport.com or by calling 1-877-322-8228.

DEED suggested job seekers look for any unfamiliar transactions or accounts on the reports. Oddities or violations can be reported by calling the phone number listed on the credit report or by contacting the Federal Trade Commission at www.consumer.gov/idtheft.

DEED said it is working to improve how it verifies employer representatives on MinnesotaWorks.net and is working on security technology upgrades and other precautions “to prevent

Read More... Read More

Chick-fil-A confirms accounts hacked in months-very long “automatic” assault

American speedy meals chain Chick-fil-A has verified that over 71,000 customers’ accounts ended up breached in a months-prolonged credential stuffing attack, permitting danger actors to use saved rewards balances and entry personalized details.

In January, BleepingComputer reported that Chick-fil-A experienced started investigating what it explained as “suspicious activity” on customers’ accounts.

Chick-fil-A alert on website
Chick-fil-A notify on web-site

At the time, Chick-fil-A set up a support site with information and facts on what buyers ought to do if they detect suspicious activity on their accounts.

This warning arrived right after BleepingComputer emailed Chick-fil-A before Christmas about experiences of Chick-fil-A person accounts getting stolen in credential-stuffing attacks and bought on the net.

These accounts ended up bought for prices ranging from $2 to $200, based on the benefits account equilibrium and linked payment solutions.

A single Telegram channel found by BleepingComputer confirmed people today getting these accounts and then sharing images of their buys built via these accounts.

Chick-fil-A accounts for sale
Chick-fil-A accounts for sale
Source: BleepingComputer

Chick-fil-A confirms credential stuffing attack

Currently, Chick-fil-A confirmed our reporting in a safety discover submitted to numerous Attorney Normal places of work, stating that they endured a credential stuffing attack amongst December 18th, 2022, and February 12th, 2023. This sustained assault permitted the threat actors to hack a total of 71,473 Chick-fil-A accounts.

“Adhering to a careful investigation, we decided that unauthorized events launched an automatic attack versus our web site and cell application concerning December 18, 2022 and February 12, 2023 applying account credentials (e.g., e-mail addresses and passwords) obtained from a third-party supply.

Centered on our investigation, we decided on February 12, 2023 that the unauthorized functions subsequently accessed info in your Chick-fil-A A single account.” – Chick-fil-A notification.

The fast food chain is warning impacted customers that risk actors who accessed their account would have also experienced accessibility to their particular info, including their name, email handle, Chick-fil-A One membership variety and mobile fork out selection, QR code, masked credit rating/debit card selection, and the quantity of Chick-fil-A credit rating (e.g., e-gift card stability) on your account (if any).

For some clients, the info might have

Read More... Read More

You should not Enable Your Residence Wi-Fi Get Hacked. This is What to Do

This story is aspect of Residence Suggestions, CNET’s assortment of sensible suggestions for finding the most out of your dwelling, inside and out.

Your property network could possibly not be as safe as you imagine. In 2021, online crime charge folks in the US more than $6.9 billion. Though phishing and scams contributed to the losses, individual data breaches were also sizeable. In lots of conditions, all those personalized details breaches could have been prevented by just a small home community security.

The average US home has more than 10 gadgets connected to its property Wi-Fi community. From laptops and tablets to telephones, smartwatches and streaming devices, the range can ramp up swiftly, and each is perhaps susceptible to hacking. With so a great deal info saved on those equipment — credit rating card figures, financial institution records, login qualifications and other personal and non-public information and facts — you want to guarantee you happen to be preserving you from hackers if your network is ever compromised.

CNET Home Tips logo

A protected residence community will aid cut down the possibility of acquiring hacked and acquiring someone access your delicate information and facts. Not only that, it will maintain absent unwanted or unauthorized end users and equipment that would sluggish down your link or freeload on the world-wide-web service you pay out for.

It can be reasonably simple to make and keep a secure dwelling Wi-Fi network. Beneath, you can expect to locate 10 strategies for securing your network. Some are extra effective than other folks at keeping hackers and freeloaders at bay, but all are beneficial in their personal way. Preserve in intellect that practically nothing can promise complete security from hacking attempts, but these ideas will make it harder for anyone to compromise your community and details.

How to secure your house Wi-Fi network

Right here are the basic principles for defending your residence Wi-Fi network. Preserve looking through for much more data on each below.

1. Location your router in a central area.

2. Build a powerful Wi-Fi password and change it usually.

3.

Read More... Read More