While uKnowKids had a somewhat despicable disclosure of their breach that involved shooting the messenger, here are two positive examples of breach disclosures I came across this week: RubberStamps.net notified about 7,000 customers that its web site was compromised between November 3, 2015 to December 11, 2015. In a well-written letter, Scott Lee, the President and CEO, Superior Labels, Inc. explained that…
Category: Hack
Operation Blockbuster Coalition Ties Sony, Other Destructive Attacks to Lazarus Group
Michael Mimoso reports: The nation-state sponsored hacker group allegedly behind the 2014 attack against Sony Pictures Entertainment has been linked to similar intrusions against a number of companies in South Korea including the Dark Seoul and Operation Troy attacks. A coalition of security companies called Operation Blockbuster, including Kaspersky Lab, Novetta, AlienVault, Invincea, ThreatConnect, Volexity, Symantec,…
NY: College staffers hacked girls’ laptops to steal nude photos: suit
Kathianne Boniello reports: A Bronx college had its own “Freak Squad” of tech workers who hacked student and employee computers to steal porn and intimate images, according to a lawsuit. Four men in the Academic Computing Center at Hostos Community College admitted breaking into the personal laptops of female students to steal naked pictures and…
ME: Data breach hits York Hospital employees
SeacoastOnline reports: York Hospital has been hit by cyber criminals who stole identifying information from employees, but the hospital says patient information was not targeted. A press release sent out Wednesday afternoon said there is no indication at this time that patient health information, which is stored on a system separate from staff employment information,…
United Nations World Tourism Organization hacked and forum members’ data dumped
The United Nations World Tourism Organization has reportedly been defaced, hacked, and forum data dumped by TeaMp0isoN. A TeaMp0isoN spokesperson alerted DataBreaches.net to the incident. The defacement was still evident as of the time of this posting. The forum dump contains 1524 records with forum member usernames, email addresses, and MD5-hashed passwords. In response to a inquiry…
Former Smart Online IT manager sentenced to 30 months for sending damaging code to the firm’s servers
There’s a follow-up to an incident previously reported on this site. Nikhil Nilesh Shah, a former information technology manager at Smart Online, who pleaded guilty in August to sending damaging computer code to servers at his former employer has been sentenced to 30 months in prison. He was also ordered to pay pay $324,462 in restitution. SOURCE: U.S. Attorney’s…