Over on Security Bistro, Linda Musthaler discusses the recently disclosed Spec’s breach and the fact that Spec’s knew about the breach but was asked not to disclose it by law enforcement. We’ve seen this many times – delays in notification so as not to interfere with a law enforcement investigation. But should there be some…
Category: Hack
German officials confirm 18 million emails and passwords stolen
DW reports that there’s been another large data theft reported in Germany: Another mass hacking of private data was confirmed by German officials on Thursday, this time involving 18 million email addresses and passwords. Authorities in the northwestern city of Verden discovered the trove of information, according to the city’s public prosecutor Lutz Gaebel. Unidentified…
PK: Privacy breach: ‘Hacker’ arrested for leaking private data
Asad Kharal reports: A man was arrested on Wednesday for hacking into a cellular company’s database and uploading the information of its subscribers on a website. Mubashar Shahzad, a resident of Kasur, was arrested after the National Response Centre for Cyber Crime (NR3C) of the Federal Investigation Agency (FIA) traced his IP (internet protocol) address,…
Anti-media cybercrime spree continues: Al Arabiya hacked by NullCrew
Violet Blue reports that NullCrew teamed up with the Horsemen of Lulz and used the same unpatched vulnerability in Zimbra that it used to hack Comcast to now hack Al Arabiya, the second largest media company in the Middle East. Read more on ZDNet.
Hack of Boxee.tv exposes password data, messages for 158,000 users
Dan Goodin reports: Hackers posted names, e-mail addresses, message histories, and partially protected login credentials for more than 158,000 forum users of Boxee.tv, the Web-based television service that was acquired by Samsung last year, researchers said. The breach occurred no later than last week, when a full copy of the purloined forum data became widely available,…
JSTOR notifying 800 users that account information was accessed by unauthorized individual(s)
JSTOR, a not-for-profit founded to help academic libraries and publishers (and part of ITHAKA), is notifying 800 users of a breach discovered on March 17: RE: Important Security Notice from JSTOR We are writing to let you know that your MyJSTOR account was recently accessed without authorization by a third party. What this means to you…