If you’ve been following this week’s episode of “Breach Alert Hell,” DataBreaches.net has received a response from Ontario Crime Stoppers. I’ve posted their statement under the original breach report, here. I hope the other affected chapters are also taking steps to secure their sites better, but haven’t heard from them.
Category: Hack
Oh, to be a fly on the wall (Crime Stoppers breach update)
If you read my post about the hack involving three Canadian chapters of Crime Stoppers, or if you follow me on Twitter (@pogowasright), you know that I’ve had a frustrating time trying to alert those chapters that they’ve been hacked and need to secure their data better. In the interim, as I browsed the pastes of the hacked data (which…
FireEye claims discovery of 10-year hack campaign by China
Aimee Chanthadavong reports: A decade-long cyber espionage operation focused on stealing sensitive information for the Chinese government is claimed to have been uncovered by security firm FireEye. The FireEye intelligence report (PDF), APT30 and the Mechanics of a Long-Running Cyber Espionage Operation, has revealed that the group, dubbed APT30, has been maintaining an advanced persistent threat…
Here’s a tip for some Crime Stoppers in Canada: you’ve been hacked (UPDATED)
April 14: See update and possible correction at the bottom of this post concerning the storage and encryption of tips. TeaMp0isoN claims that one of the sites they recently “audited” was the web site of Waterloo Crime Stoppers. In a zine about what they describe as a 0day SQLi attack, TeaMp0isoN writes that they found an unprotected…
TeaMp0isoN reveals schools’ vulnerabilities
Reading @_TeaMp0isoN_’s Twitter timeline last night and this morning was somewhat disheartening. Tweet after tweet identified vulnerabilities that would enable hackers access to universities’ sites. For each school named, TeaMp0isoN indicated the type of vulnerability they had found and the vulnerable url. In some cases, if the university has a Twitter account, TeaMp0isoN included their Twitter account…
Hacker gets 10 years in jail for spying on Colombia peace process
I’m always reluctant to rely on Fox News for anything, but they seem to have the only English-language news coverage of this development: A Colombian court sentenced hacker Andres Sepulveda to 10 years in prison after he admitted to various crimes, including spying on the government’s peace talks with the FARC, and accepted the prosecution’s…