As noted here and elsewhere, the number of breaches reported in the media and other sources declined in 2009 relative to 2008, but newly obtained data suggests that once again, there was much that we did not know. During the period September 1 – December 31, 2009, 141 breach reports were received by the…
Category: Hack
2d hacker in TJX case sentenced to 5 years
Todd Wallack reports: Another hacker involved in the TJX credit card theft case, Damon Patrick Toey, has been sent to prison. US District Court Judge William G. Young yesterday sentenced Toey, who lived in Florida and Virginia, to five years in prison and $100,000 fine for helping Miami hacker Albert Gonzalez steal tens of millions…
Threat Level Privacy, Crime and Security Online Prosecutors Seek 6 Year Sentence for TJX Hacker’s ‘Trusted’ Accomplice
Kim Zetter reports: If TJX hacker Albert Gonzalez had gone to trial instead of pleading out, one man would have been the primary witness against him — accomplice Damon Patrick Toey. Toey, identified often in court documents simply as “PT,” provided information that investigators say likely helped persuade Gonzalez to plead guilty last year to…
Monoprice confirms data breach, notifies customers
On March 9, Brian Krebs broke the news that Monoprice had shut down its web site while it was investigating the possible compromise of customer credit and debit card information. On April 2, Monoprice’s President and CEO Jong S. Lee notified the New Hampshire Attorney General’s Office that on March 29, it determined that its…
Data stolen from 95,000 credit card customers
Kim Mi-ju reports: A single information trafficker managed to steal the personal data of more than 95,000 Korean credit card users – and sell it to thieves who created cloned credit cards, police said Sunday. Police said a Romanian used the Internet to install spyware in point-of-sale systems at 36 large discount stores, restaurants and…
Atlassian hacked (update 1)
From the Atlassian company blog: Around 9pm U.S. PST Sunday evening, Atlassian detected a security breach on one of our internal systems. The breach potentially exposed passwords for customers who purchased Atlassian products before July 2008. During July 2008, we migrated our customer database into Atlassian Crowd, our identity management product, and all customer passwords…