Items tagged with Hack

The parade of banks, insurance companies and retailers that have suffered data breaches has caused many people to store their passwords with sites like LastPass. The security company creates a unique password for each of the user’s logins and provides access to those passwords via a single, master password.Now, LastPass is admitting that at least some of its data has been comprised. The company believes that its customers are not vulnerable, but it concedes that email addresses and authentication hashes are among the data affected. Password reminders and server per user salts were also comprised.... Read more...
These days, you can’t seem to escape reports of major corporations being “taken down” by phishing schemes (“Hello, Sony”) or ordinary spam. Valve doesn’t want its hugely popular Steam digital distribution service (or its users) to fall victim to such attacks, so it’s taking a rather unusual step to help weed out accounts that could possibly be used for nefarious purposes. Valve has adopted a new policy that requires users to spend at least $5 before they are able to access a wealth of features that Steam users normally take for granted. Thankfully the threshold is rather low and it is pretty easy... Read more...
As we discovered late last week, Lenovo has been serving up some tainted Superfish via its consumer PCs. Once Lenovo was called out for its heinous actions, the company offered an apology and vowed to remove Superfish from shipping systems (it provided removal instructions and later an automatic removal tool for machines already affected by Superfish). However, the apology apparently wasn’t enough as Lenovo is already facing a lawsuit stemming from Superfish. Now it looks a though hacker group Lizard Squad is retaliating in its own, childish way. At around... Read more...
The war of words between the United States and North Korea is escalating. Following the Sony breach that took place in late November (all because of a comedy film called The Interview), the FBI and the Obama Administration pointed fingers at North Korea for orchestrating the attack. North Korea has claimed innocence throughout the aftermath, but indicated in early December that it condoned the “righteous deed.” The Obama administration stated that it would “respond proportionately” to the hack, and not long after, North Korea was the on the receiving end of an “unprecedented” Internet takedown... Read more...
If you mess with the bull, you’ll get the horns. Sony became the victim of a massive cyberattack that took place in late November. But not only was Sony a victim, but numerous Sony employees were caught up in the mess when sensitive personal information like social security numbers were leaked onto the internet. After the hack came threats against Sony employees and their families, followed by terrorist threats against movie theaters that dared to show the film, “The Interview,” which resulted in major cinema chains withdrawing their support for the film. Without backing from big names like Regal... Read more...
It's been a busy year for hackers, who collectively have been infiltrating various retail chains at a fierce pace. That includes office supply chain Staples, which on Friday revealed that around 1.6 million payment cards may have been affected by a recent "security incident" in which hackers deployed malware to a "small percentage" of point-of-sale systems. How small? Staples said the malware affected 115 of its more than 1,400 U.S. retail stores. The revelation into the number of potentially affected customers is an update to an incident that occurred back in September. Staples... Read more...
Sony was rocked by a massive ransomware attack in late November, and is still reeling from the effects. Most recently, Sony employees have been on the receiving end of threatening emails from the perpetrators of the hack: Guardians of Peace (#GOP). Now we’re beginning to learn a bit more about the hack courtesy of Mandiant, the cybersecurity firm brought in for digital forensics analysis. While the investigation is still ongoing, email correspondence from Mandiant founder Kevin Mandia and Sony Entertainment CEO Michael Lynton has been provided to Variety. Lynton sent out an email to employees on... Read more...
It appears that Sony has become the victim of a massive ransomware hack which has resulted in the company shutting down. An unnamed source spoke to Business 2 Community claiming that the company shut down after its computers in New York and around the nation were infiltrated. The source, according to the website, is an ex-employee of Sony Pictures who has a friend that still works for the company. According to the source’s friend, allegedly, every computer in Sony’s New York Office, and every Sony Pictures’ office across the nation, bears an image from the hacker with the headline “Hacked By #GOP”... Read more...
Here's a story that just keeps getting stranger. Lizard Group, a hacker group that claimed responsibility for Sony's PSN downtime over the weekend, has created a stir that'll no doubt have the FBI involved. As if claiming that it took PSN down wasn't enough, it tweeted earlier today to American Airlines that it had been "receiving reports" that a plane carrying Sony Online Entertainment (SOE) president John Smedley also had explosives onboard. Importantly, the group did not claim that it had anything to do with said explosives, only that it knew of them onboard. Twitter threats are taken just as... Read more...
A weakness has been identified that could exist in Android, Windows, and iOS devices that can be used to obtain personal information. Discovered by a team of researchers, the vulnerability revolves around multiple applications running on a shared infrastructure that can be exploited. According to their research, they were able to test a method, on an Android phone, that was successful between 82 percent and 92 percent of the time for six of the seven apps that were tested. The apps with such high percentages were Gmail (92 percent), H&R Block (92 percent), Newegg (86 percent), WebMD (85 percent),... Read more...
There are data breaches and then there are data breaches. The Target breach, for example, was (and continues to be) a total disaster for the company with millions affected. Other hacks are made better or worse by a given company’s attitude and response. Spotify has apparently experienced some sort of breach of its own, but if you’re going to get hacked, this is a best case scenario. A total of one user has been affected according to a post by Spotify CTO Oskar Stål, but even so, the company is hitting the big red button just to be safe. “We’ve become aware of some... Read more...
AOL has experienced a nasty security breach that exposed a great deal of user information, and the company says that it was the work of criminal hackers, as opposed to some kind of glitch or oversight. “AOL is investigating a security incident that involved unauthorized access to AOL's network and systems. AOL is working with best-in-class external forensic experts and federal authorities to investigate this serious criminal activity,” wrote the AOL Mail Team in a blog post. AOL first noticed that there was a problem when users began seeing an increase in spam in the form of spoofed... Read more...
Facebook has endeavored to make coding a more efficient process by developing a coding language called Hack. Facebook has been using Hack internally for quite some time, and now the company is open sourcing the tool for anyone to use. “Hack is a programming language for HHVM that interoperates seamlessly with PHP,” reads the “Hack Lang” website. “Hack reconciles the fast development cycle of PHP with the discipline provided by static typing, while adding many features commonly found in other modern programming languages.” The problem that Facebook addressed with... Read more...
The good news for Target and its customers is that the retailer’s robust IT system detected the massive holiday season hack that affected tens of millions of accounts before it ever happened. The bad news is that Target failed to act on that detection, and the rest is history. According to Bloomberg, Target’s security tools detected the malware used in the hack as early as November 30th, and the thieves weren’t able to remove any data until December 2nd, which means that there were a couple of days wherein the threat couild have been mitigated. Bloomberg asserts that it was human... Read more...
1 2 3 4 5 Next ... Last