A paste on Pastebin points to a hack of Wounds International. The SQL injection attack, by @str0ke_, who self-identifies as affiliated with @ToucSec, does not really offer a specific explanation for why the firm was attacked: Target……………….: Wounds International; Date…………………: 6.24.2015 Title………………..: Wounds International Data Dump; Wounds International, we have a bit more instore for you; not that…
Month: June 2015
National Archives finds same malware that stole gov’t personnel data
Sean Gallagher reports: In the wake of the discovery of malware on the network of the Office of Personnel Management (OPM), the National Archives and Records Administration discovered three desktop computers that had been infected with the same remote access malware. The malware was detected by the National Archives’ own intrusion detection system after receiving signature data…
AU: ALP says PM may have aided ASIO breach
Once again, what’s exposed in the background of a news film may reveal sensitive information. AAP reports: ASIO chief Duncan Lewis briefed Mr Abbott and Justice Minister Michael Keenan on the spread of Islamic State in Iraq and Syria during a tour of ASIO’s new headquarters in Canberra on Wednesday. Shadow Justice Minister David Feeney…
Ca: Detour Gold data dump exposed over 1,300 employees’ details
Since April, DataBreaches.net has been reporting on the hack of a small Canadian gold-mining firm, Detour Gold. As noted in April, hackers who call themselves Angels_of_Truth claim to have hacked Detour Gold in revenge for Canada’s economic sanctions on Russia. Their statements have been written in both English and Russian. Following the first paste and…
Login creds for US agencies found scrawled on the web’s toilet walls
Alexander J. Martin reports: A threat intelligence report into the availability of login credentials for US government agencies has identified 47 agencies across 89 unique domains may be compromised. The findings resulted from an analysis of open source intelligence (OSint) from 17 paste sites, carried out between 4 November 2013 and 4 November 2014. Read…
Computer system that detected massive government data breach could itself be at ‘high risk,’ audit finds
Eric Yoder reports: The computer upgrade that federal officials tout as having detected — although not prevented — a massive breach of information on federal employees is itself at high risk of failure, according to a new internal audit. The independent inspector general’s office within the Office of Personnel Management is conducting a thorough review…