Chris Halsne reports: A just-released audit finds that Colorado state computer systems are vulnerable to a cyber attack. The report mirrors the results of a year-long FOX31 Denver investigation. We found gaping holes in security, some of which exposed the Social Security and bank account numbers of state employees and contractors. Monday, the State Auditor`s Office blamed the…
Month: December 2014
A Breakdown and Analysis of the December, 2014 Sony Hack
Risk Based Security (RBS) has posted a chronology and detailed analysis of the data dumps to date in the Sony hack. This is a must-read article for journalists or those interested in the scope of data types involved.
VA: Woman sentenced for stealing identities of patients
Scott Daugherty reports: A Suffolk woman was sentenced Monday to 5 years and 5 months in prison for her role in an identity theft scheme that targeted medical patients. The sentence is on top of a two year one Sheila Clark Lewis is already serving in Suffolk, as well as any sentence she might receive…
Officials report University of Oklahoma nursing web server compromised (updated)
NewsOK reports: The University of Oklahoma Health Sciences Center announced Monday that a College of Nursing Web server was compromised. University personnel discovered the security breach Oct. 20, according to a news release. While working to recover the system on Nov. 3, they learned the compromise could have enabled unauthorized access to sensitive data. University…
SG: Hacker jailed 6 months for attacking Prime Minister’s Office website and other offences
Ian Poh reports: Undeterred by the Government’s warning that it would deal with those who threaten to attack Singapore’s cyber infrastructure, a hacking enthusiast tested his skills on the Prime Minister’s Office (PMO) website. Mohammad Azhar Tahir, 28, was sentenced to two months’ jail on Monday for entering unauthorised computer code into the site on…
AliExpress WebSite Vulnerability Exposes Millions of Users’ Private Information (Updated)
The Hacker News reports: A critical, but easily exploitable personal information disclosure vulnerability has been discovered in the widely popular online marketplace AliExpress website that affects its millions of users worldwide.. […] Amitay Dan, an Israeli application security researcher working at Cybermoon.cc, reported the vulnerability to The Hacker News after providing full disclosure of the flaw to the AliExpress…