Darren Pauli reports: A popular Brazilian newspaper has been hacked by attackers who used code that attacked readers’ home routers, says researcher Fioravante Souza of web security outfit Sucuri. Attackers implanted iFrames into the website of Politica Estadao, which when loaded began brute force password guessing attacks against users. Read more on The Register.
Category: Business Sector
Freenode IRC users told to change passwords after securo-breach
John Leyden reports: A security breach at popular, free and open source software-focused IRC network Freenode means users need to change their passwords. Freenode’s IRC server was compromised and passwords were likely sniffed by unidentified hackers, prompting a warning to users that they should reset their passwords as a precaution. The security breach was identified…
NY: Saks workers caught binge shopping with customer cards
Jamie Schram and Bob Fredericks report: A crew of Saks Fifth Avenue employees was busted after they charged at least $400,000 worth of luxury shoes, handbags and other items using customers’ stolen credit card numbers, authorities said Wednesday. Six workers at the Midtown fashion Mecca swiped credit card data from 22 customers in a spending…
Ernst & Young accused by Canadian of massive data breach
Ellen Messmer reports: A used computer dealer in Canada claims he discovered a trove of Ernst & Young customer business data on Dell servers bought back in 2006 — and he wants the global consultancy to pay him to return the data. But is the breach for real or just a hoax? Mark Morris, who…
Home Depot Malware Hints at Different Hackers Than Target’s
Dune Lawrence and Michael Riley report: Home Depot was hacked with a malicious software program that plunders store registers while disguising itself as antivirus software, according to two security researchers. The credit card-stealing program used in the attack on the Atlanta-based retailer is being dubbed FrameworkPOS, and differs significantly from the software used last year to…
Yandy breach impacted over 44,000 online customers
Quick update: The Yandy breach, disclosed previously on this blog, may have affected 44,724 customers, according to a letter from their attorneys to the New Hampshire Attorney General’s Office.