WINK reports: On Tuesday morning, staff at Florida Radiology Consultants noticed someone had accessed their computer system, hours after they closed. Deputies say whoever did this, got in through an employee’s IP address. “Could have been robotic, actually human being you don’t mind because some of these attack take days,” said Shaun Book, of Area…
Month: April 2014
Password bug let me see shoppers’ credit cards in eBay ProStores, claims infosec bod
John Leyden reports: A serious vulnerability that potentially allowed shoplifters to empty eBay ProStores shops and swipe customer credit cards has been fixed – according to the security researcher who says he found the hole. Mark Litchfield, an infosec pro at Securatary, told us he discovered a flaw in eBay-owned ProStores that not only opened the door…
JSTOR notifying 800 users that account information was accessed by unauthorized individual(s)
JSTOR, a not-for-profit founded to help academic libraries and publishers (and part of ITHAKA), is notifying 800 users of a breach discovered on March 17: RE: Important Security Notice from JSTOR We are writing to let you know that your MyJSTOR account was recently accessed without authorization by a third party. What this means to you…
United Opt Out attacked; site destroyed
Shame on whoever did this: someone attacked United Opt Out, an information resource and advocacy site for parents who want to opt their children out of mandated state tests/high stakes testing. The organization also resists “market-based reforms that seek to privatize and destroy public education.” In a statement sent to DataBreaches.net, Peggy Robertson, one of…
Angry Birds developers downplay fresh data leak claims
John Leyden reports: The developers of Angry Birds have hit back at renewed allegations that the ultra-popular game leaks users’ personal information. Security vendor FireEye put out a detailed critique of Angry Birds last week claiming that the smartphone game leaked data like a sieve. […] Rovio, the Finnish firm behind Angry Birds, downplayed these concerns while adding that it was migrating…
Expert Hacks Healthcare.gov in 4 Minutes
Well, no, they didn’t hack it. They didn’t even have to, it seems. Keith Koffler reports: Security consultant David Kennedy, who has testified before Congress about the flaws in Healthcare.gov that have made people’s information unsafe, revealed Monday he was able to gain access to the personal records of 70,000 Obamacare enrollees in four minutes….