Salaries of Abu Dhabi-based newspaper The National’s entire editorial staff have been posted on Wikileaks. Makt006 Business has more on the impact.
Category: Breach Incidents
CA: Stolen police laptops had access to county data system
Laura Norton of The Press Democrat reports that four laptops with access to personal information on the department’s more than 1,000 employees were stolen from Sonoma County Sheriff’s Department police vehicles. While the laptops were in the police vehicles, they could access the county data system, although there is no indication that the thieves did…
HackersBlog exposes BT.com vulnerability (updated)
“Unu” of HackersBlog reports that they have been able to access at least one of UK telecom BT’s databases through SQL injection: A faulty parameter, improperly sanitized opens the vault to the pretious databases. One can gain access to such ordinary things as personal data, login data, and the like. In the first syntax I…
TX: Computers With NEISD Personal Information Stolen
Personal information, resumes, photos of students and other information was found on computers from the North East Independent School District that were scheduled for destruction, but ended up for sale online and in flea markets. District officials said the computers, including three computers and two hard drives obtained by KSAT 12 News, were sent to…
USAID.gov compromised, malware and exploits served
Dancho Danchev of ZDnet reportsthat the Azerbaijan section at the United States Agency for International Development (azerbaijan.usaid.gov) has been compromised and is embedded with malware and exploits serving scripts since approximately March 1. He also provides a dissection of the attack. There’s a YouTube video from AVG as well, although it’s either somewhat blurry or…
Telegraph.co.uk hacked, SQL injection (updated)
The HackersBlog crew, who had previously exposed vulnerabilities in a number of security vendor sites and a social networking site, now reports that they were able to exploit an SQL injection vulnerability to access The Telegraph‘s databases, including one that has 700,000 email addresses and passwords of those receiving the paper’s newsletter. Given how many…