RiskBasedSecurity has analyzed the available data dump and boy, this breach was bad, involving their full source code on top of everything else. Read RBS’s analysis here.
Category: Business Sector
Private tracker member data leaked via BBCode exploit
Andy of TorrentFreak writes that a vulnerability in a popular private tracker, SceneAccess, enabled a security expert to extract private data about site members and staff and attach usernames to IP addresses. The possibility remains, Andy writes, that other sites are also affected. Read more on TorrentFreak.
HawkingTech.com compromised – again
Well, I emailed Hawking Technology (HawkingTech.com) on March 8 and again on March 10, and they never replied, but because some of their data have been publicly dumped, I may as well post this. There were over 25,000 rows with fields for username, password, and email address in the data dump. The passwords were MD5 and easily cracked, including…
Hacker picks 1-800-FLOWERS’ customers credit card info
Doug Olenick reports: In a post-Valentine’s Day attack the e-commerce site of 1-800-FLOWERS was accessed by an unauthorized person for more than a day during which time about 7,000 customers placing orders on the site may have had their personal and payment information compromised. The online flower retailer said in a letter to the California Department of…
JP: Ezaki Glico reports possible customer data breach
JIJI reports: Confectionery maker Ezaki Glico Co. said Monday that personal data on users of its online shopping site may have been compromised following unauthorized accesses. Up to 83,194 sets of personal data may have been stolen, including 43,744 that contained credit card information, according to the firm. Ezaki Glico is investigating the incident through…
Home Depot settles breach lawsuit
Jonathan Stempl reports that Home Depot has settled a lawsuit over its 2014 breach. As part of the settlement, the firm will reportedly pay $13 million to compensate consumers and $6.5 million to fund 1-1/2 years of identity protection services for cardholders.