April 2016 has all chances to be the most famous month of the year because of the leaks and security incidents. In this article we will make a brief review of all major events of the month.
1) Panama Papers
The 2,5 TB archive of documents stolen from Panama based security law firm Mossack Fonseca was partially revealed to the public. The incident is already labeled the biggest leak of all times. The disclosed documents contain information about off-shore companies and accounts of many political leaders around the globe.
2) Personal information of almost 50 million Turkish citizens was leaked on the Internet. The database contained information (national identifier, first and last name, mother’s name, father’s name, gender, city of birth, date of birth, ID registration city and district, full address) about citizens born before April 1991 (last birth date is March 29, 1991).
3) Armenian hackers from Monte Melkonian Cyber Army published personal data of 25 thousand Azerbaijan soldiers and defaced official website of Azerbaijan government.
4) Hackers were selling records of 237 000 users of the porn website Team Skeet, owned by Paper Street Media (PSM). They obtained records exploiting SQL injection vulnerability on the website.
5) Adobe patched zero-day vulnerability in Flash player. The vulnerability was used at least by two exploit packs.
6) Microsoft patched two zero-days in Graphics Component used in limited targeted attacks.
7) Imperva reported the largest HTTP-DoS attack launched by Nitol botnet. 8,7 Gb/s flood was sent from approximately 2700 IP addresses.
8) Database containing information about 93 million Mexican citizens appeared to be publicly available for some time due to poor configuration.
9) Qatar National Bank was hacked by Turkish group called “Bozkurtlar for Grey Wolves”. Hackers published a 500 MB .zip file (1,4 GB when unpacked) containing data, stolen from Qatar National Bank. QNB has admitted that its systems were hacked but said that the information released online was a combination of data picked up from the attack and from other sources such as social media.
10) Hackers targeted Canadian gold-mining firm Goldcorp Inc. and published 13,7 GB (28,3 GB when uncompressed) archive containing stolen documents. CEO of Goldcorp David Garofalo confirmed the incident.
