More on the massive data breach first reported last week:
Over half a million credit card holders may have had their account details captured by hackers, after web hosting firm Network Solutions revealed that more than 4,000 of the e-commerce sites it hosts could have been breached.
[…]
Sophos senior technology consultant Graham Cluley said in a blog post that the incident has “the potential to be a public relations disaster ” for Network Solutions.
“Network Solutions, however, is smart enough to know that it needs to work quickly in situations like this to make the best of a bad situation,” he added.
“For instance, it makes some play out of the fact that it has engaged with social media sites and bloggers to spread information and advice about the crisis, and how affected individuals and businesses should respond.”
Steve Moyle, chief technology officer at database security firm Secerno, suggested that the breach could be down to poor patch management.
Read more on v3.
Update: Network Solutions breach notification to Maryland is available online (pdf). It indicates that data were being diverted from the network during the period of March 12 – June 8, 2009.