Breaches
IBM's DeveloperWorks Website Hacked
January 12, 2011 Added by:Headlines
IBM's DeveloperWorks website was breached by hackers over the weekend. The messages left by the hacker(s) read: "Defaced by Hmei7," and, "You have been Hacked !!!, not because of your stupidity That's because we love you, and we want to warn you That your web still has large of vulnerability."
Comments (0)
EMC Engineer Stole Nearly $1 Million in Hardware
January 10, 2011 Added by:Headlines
Kevin Kelly, a former test engineer with EMC, has plead guilty to making off with almost one million dollars worth of equipment. Kelly concealed the hardware in a duffel bag and then he sold it on the internet. Most of the stolen goods were sold to BL Trading, a Massachusetts-based reseller...
Comments (0)
US Military and Government Exposures Down in 2010
January 10, 2011 Added by:Headlines
Other then breaches reported by the media and a few progressive state websites, there is little or no information available on many data breach events.It is clear without a mandatory national reporting requirement that many data breaches will continue to be unreported, or underreported...
Comments (0)
Vodafone Investigating Database Breach Allegations
January 09, 2011 Added by:Headlines
"Any unauthorised access to the portal will be taken very seriously, and would constitute a breach of employment or dealer agreement and possibly a criminal offence. All passwords have been reset and a review is being undertaken of the training and process as an additional precaution..."
Comments (0)
Retraction: White House Strategy to Prevent Leaks is Leaked
January 07, 2011 Added by:Infosec Island Admin
The document cited in this article, "M-11-08, Initial Assessments of Safeguarding and Counterintelligence Postures for Classified National Security Information in Automated Systems", was in fact not "leaked", as the article states...
Comments (3)
Top Ten Breaches By Infamous Insiders
January 07, 2011 Added by:Headlines
The insider threat to information security is an ever present and ever growing problem for the private and public sectors. Protecting against sensitive data loss events perpetrated by the very people entrusted with protecting the information is nearly a Sisyphean task...
Comments (0)
Identity Theft Resource Center 2010 Breach Report
January 04, 2011 Added by:Headlines
Breaches happen. Consumers, government and the business community need to stop acting like ostriches with their heads in the sand. Second, the concept of “risk of harm” is not acceptable for determining notification. This is true especially if the company involved is allowed to define risk of harm...
Comments (0)
WikiLeaks Breach – Trusted Insiders Not Hackers
January 04, 2011 Added by:Danny Lieberman
Of course there is an insider threat and of course it is immune to anti-virus and firewalls and of course the US Federal government is way behind the curve on data security – installing host based security which was state of the art 7 years ago...
Comments (0)
Honda Motors Company Customer Info Exposed
December 27, 2010 Added by:Rafal Los
The Honda FAQ site tells the users not to worry but does seem to hint subtly that you should change your password if you have a login on one of these sites... oddly even though the original letter the user posted appears to stress that the password was not stolen, only the user ID...
Comments (0)
Gawker Admits Lax Security Led to Breach
December 20, 2010 Added by:Headlines
“It is clear that the Gawker tech team did not adequately secure our platform from an attack of this nature. We were also not prepared to respond when it was necessary,” said Gawker's Tom Plunkett in a statement released last Friday...
Comments (0)
Thirteen Million deviantART Accounts Exposed
December 17, 2010 Added by:Headlines
The exposure was due to security lapses at Silverpop System, a marketing company that handles member communications for deviantART. The companies stated that no passwords were accessed, and that the biggest threat will be an influx of SPAM for the account holders exposed...
Comments (0)
Ten Biggest Hacking Exploits in Twenty-Five Years
December 15, 2010 Added by:Headlines
In the wake of the recent WikiLeaks and Gawker episodes, Brian Ries has compiled a list of the the 10 most destructive attacks of the last 25 years. From data theft to DDoS, worms to scams, Ries has assembled a pretty darn good survey of the best of the worst cyber miscreants have had to offer...
Comments (0)
Universities Produce Paydirt for Criminal Hackers
December 13, 2010 Added by:Headlines
Criminal hackers have found Universities to be a prime target in their efforts to amass confidential details that can be employed in identity theft rackets. According to a report by AppSec, 2.3 million records have been illegally accessed at 158 institutions in the United Sates since 2008...
Comments (0)
Gawker Breach: 1.3 Million Accounts Exposed
December 13, 2010 Added by:Headlines
Gossip website Gawker experienced a massive breach, exposing the passwords of 1.3 million accounts. The attack was carried out by a group called Gnosis. Gawker has apologized to users for the lapse in security, and urged all account holders to change their login credentials immediately...
Comments (0)
NASA Selling PCs Without Erasing Classified Data
December 09, 2010 Added by:Headlines
An audit of used hardware being sold by NASA found that the majority of the hard drives had not been wiped clean of sensitive data. Pallets of PCs were were found in a recycling center with NASA IP addresses on the processor cases, presenting a serious security problem according to the report...
Comments (0)
Chinese Hackers Lift Microsoft Windows Source Code
December 06, 2010 Added by:Headlines
A diplomatic memo from June of 2009 reveals that the Chinese security firm TOPSEC had access to the source code for Microsoft Windows and allowed the Chinese government to provided it to hackers in order to develop targeted attacks to exploit weaknesses in the operating system...
Comments (0)
- Five Things Your InfoSec Team Should Do in the Next 30 Days
- The Disclosure Debate Continues….. (part 1,453, 769) to be Continued
- The Danger of Mixing Cyber Espionage with Cyber Warfare
- Improving Security by Failing Faster
- BYOD: Should It Be the Wave of the Future?
- Trend Micro Discovers "SafeNet" - a New Targeted Espionage Operation Online
- Managing My Company’s Security is a Nightmare
- Bridging the Cybersecurity Divide, Why Security Innovation Must Lead the Way
- The Evolution of Industrial Control System Information Sharing
- ATM Security (And Really Learning from the Past)