Items tagged with breach

It seems impossible for the world to go a single week without a major security breach, so to fill the inevitable void this week is a hacker that goes by the name "thedarkoverlord," who claims to be in possession of a staggering 655,000 healthcare records. Of course, he is looking to sell them off. This latest records leak was first reported by Deep Dot Web, which has exclusive images to prove that the leak is real (one can be seen below). These images were not sourced by the website; rather, thedarkoverlord himself provided the images, probably as a way to build up some notoriety, and to flaunt... Read more...
It's beginning to look a lot like no website on Earth can be trusted with our important data, as attackers are attracted to any service that has a huge number of users. They're even attracted to websites that seek out attractiveness, apparently, as BeautifulPeople.com has had its mammoth user database stolen. Are you unsightly and want revenge? Good news! The database is for sale. As its name implies, BeautifulPeople.com is a site dedicated to hooking up good-looking blokes and gals. That makes it quite an exclusive site, especially thanks to the fact that you have to be approved by the community... Read more...
Another day, another high-profile security breach. This time the breach occurred across the pond at British telecom giant TalkTalk. TalkTalk is the United Kingdom’s second largest “quadruple play” service provider (offering phone, TV, broadband Internet and mobile phone service) behind Virgin Media. Given its massive size and its millions of customers, TalkTalk was a prime target for cyberattackers, and unfortunately, the company made it all too easy for the breach to occur. TalkTalk reported today that it is working in conjunction with the Metropolitan Police Cyber Crime Unit after it experienced... Read more...
Jan Souček, a security researcher from Prague, has uncovered a vulnerability in the security of the iOS Mail application that nefarious types can deploy against users of the app to gain access to their iCloud passwords.    The method published by Souček illustrates how an email can be sent to the hapless victim that uses HTML code that mimics the iCloud login pop-up window upon receipt. Then, after said victim has inadvertently tapped their iCloud password into the window's Password field and clicked OK, an email is sent back to the sender with that critical information. Specifically,... Read more...
U.S. officials have long blamed North Korea for the digital attack that embarrassed Sony and nearly derailed The Interview late last year. But the idea that a tiny dictatorship could effectively censor a major movie studio in the United States hasn’t been sitting well with many. As unlikely as a successful North Korean cyberattack sounds, U.S. officials are sticking to the story and a report by The New York Times explains why they’re so sure: the National Security Agency has infiltrated North Korea’s networks for years.  The NSA’s involvement might explain why President... Read more...
Most of the time, when we hear about data breaches, it's because companies have either been compromised or failed to properly protect data. This time around, however, it's the United Postal Service in the limelight. Data on as many as 800,000 employees may have been stolen along with data on customers who called the USPS' various call centers between January and August of this year. USPS spokesperson David Partenheimer told Reuters that "The intrusion is limited in scope and all operations of the Postal Service are functioning normally." What appears to set this attack apart from most other intrusions... Read more...
At some point, you have to wonder if any database that can be hacked will be hacked. With so much of the world's precious information stored on drives in the forms of 1s and 0s, what's to stop ill-willed individuals from doing to every other company what they did last year to Target, for example? Clearly, not much, as UPS has fallen victim to a data breach of its own. The logistics outfit said that "a breach of computer systems at UPS Store retail outlets may have exposed customers’ personal and payment data at some locations this year." Malware was pinpointed at 51 locations across 24 states.... Read more...
The chances that your data has been exposed by hackers in the last 12 months is nearing 50%, and it’s probably not your computer that gave up the goods. It was one or more of the dozens of companies you trust to keep your personal information safe. A new study by CNNMoney estimates that the past 12 months have seen as many as 110 million Americans have their data exposed by hacks – and many of them suffer that fate more than once. CNNMoney puts the total number of hacked accounts in the neighborhood of 432 million. Ouch. Target announced a new Digital Advisory Council this week to help... Read more...
There are data breaches and then there are data breaches. The Target breach, for example, was (and continues to be) a total disaster for the company with millions affected. Other hacks are made better or worse by a given company’s attitude and response. Spotify has apparently experienced some sort of breach of its own, but if you’re going to get hacked, this is a best case scenario. A total of one user has been affected according to a post by Spotify CTO Oskar Stål, but even so, the company is hitting the big red button just to be safe. “We’ve become aware of some... Read more...
Although news about Target’s huge data breach broke almost two months ago, the post-mortem has persisted, and a security firm has posted a detailed breakdown of what went wrong. The story is unnerving, to say the least, as it’s not so much about system-wide failures or anything so big as it is about how all it takes for a body with so many moving parts to fall apart is one weak link and some good old-fashioned phishing. It’s already been established that the breach appears to have emanated from a malware email phishing attack on a Pennsylvania HVAC company called Fazio Mechanical... Read more...
These days, the old "when, not if" saying applies to websites getting hacked just as much as it does for the likelihood of getting into a car accident. LivingSocial is the latest site to fall victim to an attack, but the Amazon-backed company has clearly learned from the mistakes of others and rushed to get out in front of the issue. Anyone visiting the site right now is greeted with a message that encourages users to change their passwords and links to a page that goes into detail about the attack. Customers have also received emails from LivingSocial. Notice anything different about LivingSocial's... Read more...
Sony's PlayStation Network and Qriocity servers were apparently running obsolete, unpatched software, and had no firewall in place, both no-nos for any company, but definitely for a company as large as Sony, trying to run a cloud-based service. In testimony in front of Congress on Wednesday, Dr. Gene Spafford of Purdue University said that security experts monitoring open Internet forums were aware months ago that Sony was using outdated versions of the Apache Web server software, which "was unpatched and had no firewall installed." Not only that, Spafford added that the "oversights" were "reported... Read more...
Wow. This is not at all what AT&T or Apple had in mind for today. Just hours after Apple made a huge announcement that involved the next great smartphone for AT&T (yes, the iPhone 4), there's been a bombshell dropped that has temporarily made the focus on both companies distinctively more negative than usual. So, what could happen to put both Apple and AT&T in such a bad light? Oh, nothing but letting hackers access well over 100,000 e-mail addresses from prior iPad 3G + Wi-Fi buyers. We told you "wow" was an appropriate response, didn't we? According to reports, a hacker group by the... Read more...
Earlier this week we reported on Scotland's Sunday Herald's claim that the Best Western hotel group was hit with the world's largest known data breach of eight million people's sensitive information, as well as Best Western's adamant denial. Even if the Sunday Herald story turns out to be true, the Best Western data breach would no longer hold the title of the world's largest known data breach. That record now goes to the Bank of New York (BNY) Mellon, which "lost" the sensitive information of 12.5 million customers. The BNY Mellon data breach itself is not new news. As documented in the Identity... Read more...
1 2 Next