Dan Goodin reports: When the Ashley Madison hackers leaked close to 100 gigabytes’ worth of sensitive documents belonging to the online dating service for people cheating on their romantic partners, there seemed to be one saving grace. User passwords were cryptographically protected using bcrypt, an algorithm so slow and computationally demanding it would literally take centuries…
Month: September 2015
UK: Bank details of thousands of Lloyds’s customers stolen from insurer
Hilary Osborne reports: Bank details of thousands of Lloyds Premier account customers have been taken from an insurer, and customers have been warned to take out cover against fraud. Some Premier Banking customers who had emergency cover from Royal Sun Alliance (RSA) through their paid-for accounts between 2006 and 2012 have been told that personal…
UK: Hacker vows to continue making Network Warrington site unavailable until price hike statement made
The Warrington Guardian reports that the municipal bus operator, Network Warrington, has been targeted with DDoS attacks in protest for an unexplained rate hike: An anonymous hacker has vowed to continue taking down Network Warrington‘s website until a statement is made on why it increased bus fares. The Warrington resident, known as Grey, claims to…
In: Woman arrested for hacking into ex-employer’s computers
NewKerala.com reports: A 30-year-old woman was arrested on Wednesday for hacking and destroying data on her ex-employer company’s computers, police said. The former employer was not named in the NewKerala reporting, but they noted: Police said there were cookies to access the user-Id of the company in the laptop of the woman, with the help…
What did CSU do to verify vendors’ data security – and what might FTC do?
When California State University decided to purchase a We End Violence program, Agent of Change, they reportedly did consider data security. The Press-Telegram reports: Laurie Weidner, spokeswoman for the Chancellor’s Office, said CSU has not terminated its relationship with We End Violence, which administered the training program called Agent of Change. The vendor was one of…
More TransformPOS clients possibly affected by security incident? (updated)
Here we go….? On Sept. 1, this blog noted a breach involving a TransformPOS client in Illinois. The client, Village Pizza & Pub, says they learned of the breach on July 27th. Now there may be other, possibly related breach reports in Wisconsin. Negassi Tesfamichael of The Daily Cardinal (a U. Wisconsin-Madison student publication) reports: The UW-Madison Police Department…