Dan Goodin reports: Hackers posted names, e-mail addresses, message histories, and partially protected login credentials for more than 158,000 forum users of Boxee.tv, the Web-based television service that was acquired by Samsung last year, researchers said. The breach occurred no later than last week, when a full copy of the purloined forum data became widely available,…
Category: Business Sector
Password bug let me see shoppers’ credit cards in eBay ProStores, claims infosec bod
John Leyden reports: A serious vulnerability that potentially allowed shoplifters to empty eBay ProStores shops and swipe customer credit cards has been fixed – according to the security researcher who says he found the hole. Mark Litchfield, an infosec pro at Securatary, told us he discovered a flaw in eBay-owned ProStores that not only opened the door…
Angry Birds developers downplay fresh data leak claims
John Leyden reports: The developers of Angry Birds have hit back at renewed allegations that the ultra-popular game leaks users’ personal information. Security vendor FireEye put out a detailed critique of Angry Birds last week claiming that the smartphone game leaked data like a sieve. […] Rovio, the Finnish firm behind Angry Birds, downplayed these concerns while adding that it was migrating…
Bank drops lawsuit against Target and Trustwave
Jeremy Kirk reports that Trustmark National Bank, one of the two plaintiffs in a lawsuit filed by banks against Target and Trustwave, has filed a notice of voluntary dismissal to drop their role in the lawsuit. Because the lawsuit was dropped without prejudice, the bank may re-file the suit at some point, although I suspect…
Angry Birds still leaking user details, data security firm reports
Rovio, the creator of the mobile game hit Angry Birds, has continued its co-operation with an ad platform believed to have been hacked by the British intelligence agency, data security firm FireEye reveals in its blog. The Guardian reported in January, citing documents provided by Edward Snowden, that the Government Communications Headquarters (GCHQ) can snatch…
TX: Document Shredding Company Employee Eyed in ID Theft Ring
Scott Gordon reports: A Fort Worth man who worked for a document shredding company did not destroy bank records and instead shared them with thieves, according to court documents. The number of potential victims is in the thousands and the total loss may be in the millions of dollars, a law enforcement source told NBC…