So the next time you read a report about how much money patient info goes for on the dark web or read estimates about $200/record, perhaps you should shop around, because medical records and health insurance info can be dirt cheap. This vendor will apparently sell you two patients’ records with their Social Security number, date…
Month: February 2017
Lone hacktivists persist, but are they making a difference?
Sometime around June, 2015, a hacktivist who calls himself @ElSurveillance on Twitter began defacing web sites of escort services. In July, 2015, I became aware of him and began reporting on his attacks, which usually include messages left on the sites about how the service and conduct is an affront to Islam. To get an idea…
Harvard Computer Society’s Face Should be VERY Crimson: Inadvertently Exposed Student Info Online – for YEARS
Hannah Natanson & Derek G. Xiao report: More than 1.4 million emails—some divulging Harvard students’ grades, financial aid information, and at least one individual’s Social Security number—sent over Harvard Computer Society email lists were open to the public until Monday. Teaching fellows, resident tutors, College administrators, and thousands of undergraduates have used the email list…
Malware Used to Attack Polish Banks Contained False Flags Blaming Russian Hackers
Catalin Cimpanu reports: Malware samples used in the recent attacks against several Polish banks contained planted evidence that attempted to blame the attacks on Russian-speaking hackers. These false flags, as the (IT and real-world) security community refers to these planted clues, were discovered by Sergei Shevchenko, a Russian-speaking security expert for BAE Systems. In a report published this morning,…
UK: ‘Shambles’ as council makes blunder with children in care register
Express & Star reports: The council mistakenly sent the list of children, including personal information, to a number of its in-house foster carers. It has now launched an investigation into the data breach and insisted that ‘no children were put at risk’. But County Councillor George Adamson, who is also the leader of Cannock Chase District…
Hackers who took control of PC microphones siphon >600 GB from 70 targets
Dan Goodin reports: Researchers have uncovered an advanced malware-based operation that siphoned more than 600 gigabytes from about 70 targets in a broad range of industries, including critical infrastructure, news media, and scientific research. The operation uses malware to capture audio recordings of conversations, screen shots, documents, and passwords, according to a blog post published last…