Wikipedia JavaScript Worm, ICE Contractor Data Leak Claim, and Leak Base Takedown
Wikipedia admins contained a self-propagating JavaScript worm that spread via infected user script files, executing in logged-in editors’ browsers and using authenticated sessions to copy itself into other scripts, sometimes affecting global scripts; administrators restricted edits, reverted and suppressed changes, replaced compromised scripts, and continue investigating the originating account.
A hacktivist group calling itself the Department of Peace claims it leaked records tied to DHS’s Office of Industry Partnership involving 6,681 organizations that applied for ICE-related contracts, releasing the dataset via Distributed Denial of Secrets, while DHS has not confirmed the breach or data authenticity.
Finally, the FBI, Europol, and partners dismantled the Leak Base cybercrime forum, seized its database, conducted arrests and searches, and warned suspects through the forum’s channels.
Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that’s built for performance and scale. You can find them at Meter.com/cst
00:00 Sponsor Message
00:19 Headlines Intro
00:42 Wikipedia Worm Attack
01:19 How The Worm Spread
02:08 Containment And Lessons
02:53 Hacktivists Leak ICE Data
04:47 Leak Base Takedown
06:10 Database Seizure Fallout
07:12 Wrap Up And Weekend Preview
07:30 Sponsor Closing
Read the original article: