.c0mrade aka @OfficialComrade has been on a mission to show that the united states of America government is insecure and all its peoples information is as well. .c0mrade has released yet another release that contains a downloadable files that was uploaded to anonfiles. The file is said to contain proof of the attack and the attack…
Month: June 2012
Update, NZ: ACC privacy breach payout offered
An update to a privacy breach previously noted on this blog: Compensation offered to victims of a mass privacy breach by ACC will be at the “lower end”, ACC Minister Judith Collins said. ACC has posted letters to about 250 people whose cases are with ACC’s sensitive claims unit – which holds details of victims…
Hackers grab customer data, demand cash from payday lender
Elinor Mills reports: Hackers have released consumer data stolen from an online loan provider, after the company refused to pay an extortion fee. “On June 12, AmeriCash Advance received a fax, telling us that part of our Web site had been hacked. The letter went on to demand initial payment of $15,000 from us,” AmeriCash Advance, an…
UK: Data breach exposed as council launches new policy
Ouch. Information Age reports: A data breach at Dumfries and Galloway Council was reported just hours after the council announced a new data protection policy. The Scottish local council announced yesterday that it had approved a new data protection policy, having suffered two significant data breaches last year. In one incident, salary information about 9,000…
Should we send in CSI to figure out the source of a data dump?
Here’s a great example of the perils in trying to report on hacks or breaches disclosed on Twitter or Pastebin. A hacker who self-identified as Reckz0r initially claimed to have hacked Visa and MasterCard and to have dumped 50GB worth of data (without credit card numbers). I had my doubts, and wasn’t surprised to read…
LinkedIn sued over inadequate security
It was, of course, only a matter of time. VentureBeat reports that LinkedIn has been sued over the security breach that affected 6.5 million passwords. You can read the complaint on VentureBeat. The lawsuit claims that the firm’s policy promised “industry standard protocols” to protect the data, and that hashed passwords just don’t live up…