This post originally appeared on PogoWasRight.org. I am cross-posting it here because I think NullCrew’s hack should inform policy decisions and public debate about a program of Bell’s that involves a lot of sharing of consumers’ personal information with “affiliates.” Bell (BCE, Bell Canada, Bell Mobility, Bell Aliant and their affiliates) believes it is engaging…
Category: Breach Incidents
Home Depot corporate employees charged with stealing co-workers’ personal info [updated]
Rachel Stockman reports: The U.S. Secret Service is investigating a security breach at Atlanta-based Home Depot’s corporate headquarters. According to a criminal complaint, three human resources employees were arrested after accessing employees’ confidential information and opening fraudulent credit cards. […] Home Depot has notified the affected employees and is offering free credit monitoring. Read more…
Update on Midland ISD data theft
In the wake of the Midland ISD breach where 14,000 current and former students’ information was on hard drive stolen from an administrator’s car, I asked: Was the administrator violating any established policy or was there no policy in place that says, “Hey, dummy, don’t leave PII lying around?” It turns out there really wasn’t any…
St. Louis member of “Anonymous” sentenced for DDoS on Koch Industries subsidiary
Christopher Michael Sudlik, 22, of St. Louis, Missouri, was sentenced to 36 months’ probation, 60 hours of community service, and ordered to pay $110,932.71 in restitution. The sentence was announced yesterday by James L. Santelle, United States Attorney for the Eastern District of Wisconsin. Sudlik had previously pled guilty for participating in #OpWisconsin with other members…
NullCrew claims hack of Comcast mail servers
The hacker collective known as NullCrew has been busy. After making some waves with their hack of a Bell Canada subdomain operated by a third-party supplier, the hacking collective just announced a hack involving Comcast. As it did with Bell, the @NullCrew_FTS account on Twitter gave advanced notice that they would be announcing the hack…
Target Hackers Broke in Via HVAC Company – Krebs
Brian Krebs gets the scoop again: Last week, Target told reporters at The Wall Street Journal and Reuters that the initial intrusion into its systems was traced back to network credentials that were stolen from a third party vendor. Sources now tell KrebsOnSecurity that the vendor in question was a refrigeration, heating and air conditioning subcontractor that has worked at a…