Anthony M. Freed of Information Security Resources reports that Visa has put Heartland Payment Systems on probation. As of February 11, 2009 Visa’s Global List of PCI DSS Validated Service Providers had asterisked Heartland Payment Systems as being under review. Heartland is not on the March 12th list. The following quotes from Visa’s announcement are…
Category: Hack
Army database may have been breached
Doug Beizer of Federal Computer Week reports that an Army database containing personal information about nearly 1,600 soldiers involved with the Operation Tribute to Freedom program during the past five years may have been accessed by unauthorized users. The potentially compromised information does not include Social Security numbers, but does include names, phone numbers, addresses,…
Nature security breach prompts password reset
John Leyden of The Register reports: The website of science journal Nature has suffered a security breach that resulted in the potential exposure of users’ login credentials. The login credentials were stored in an encrypted form, making them hard to extract. But Nature.com has still opted to reset the passwords of affected users, as a…
Police in Romania detain 20 alleged hackers
The Associated Press reports that police in Romania have detained 20 people suspected of cloning the web sites of banks in other countries to deplete customers’ bank accounts. Individuals in both Spain and Italy were affected. In another case, police detained a person suspected of hacking into the servers of U.S. universities and government agencies,…
More on the Coleman campaign breach (updated)
The Associated Press is now reporting that financial data for at least 4,700 campaign donors was posted on the internet and contact information for 51,000 others was also disseminated. A statement from Coleman’s office indicates that there may have been a breach of the Coleman for Senate web site and that federal investigators, when contacted…
BT rebuts vulnerability claims
(This is a follow-up to a story reported here). Today, John Leyden of The Register reports that BT.com claims that the flaws HackersBlog reported only involved test systems and that no customer data were at risk. Whether BT’s statement was issued before or after HackersBlog published more about the alleged vulnerability and databases they were…