From their website (h/t, KFOR): Letter to the UCO Community – March 13, 2014 Dear UCO Community Member, On March 12, 2014, the University of Central Oklahoma discovered a breach of sensitive personal information due to unauthorized access to information stored on one of our servers. Some members of the university community are being directly…
Category: Hack
MI: More Credit Card Info. Compromised at Montcalm County Market
A breach involving Carson Village Market, reported previously on this blog, continues to result in new fraudulent charges on customers’ cards, and customers who used their card since January 1 are now being advised to cancel their cards. WOOD has the story.
Courts Reining In What it Means to be a “Hacker” Under the Computer Fraud and Abuse Act (CFAA)
Ralph C. Losey of Jackson Lewis writes: The Computer Fraud and Abuse Act (“CFAA”) is an anti-hacker statute that prohibits unauthorized access, or the exceeding of authorized access, of computers connected to interstate commerce. 18 U.S.C. § 1030. Violators are subject to both criminal and civil liability. Employers have long taken advantage of the CFAA’s civil remedies to “sue former employees…
Did the CIA Violate the Computer Fraud and Abuse Act by Accessing Intelligence Committee Computers?
Orin Kerr writes: Senator Feinstein recently claimed that the CIA may have violated the federal computer hacking statute, the Computer Fraud and Abuse Act, by searching computers used by the Intelligence Committee to conduct CIA oversight. Based on the facts we know so far, I’m skeptical of the claim that the CIA violated the statute. This post…
Target ignored its own warning system – Bloomberg (updated)
I’m watching Josh Tyrangiel of Bloomberg on CBS News this morning reporting that prior to its massive breach, Target ignored the warning alerts generated by its FireEye system. Target hasn’t responded to Bloomberg’s questions as to why the warning e-mails generated by the system were ignored. Interestingly, we heard something similar in the Neiman-Marcus breach where…
EC-Council notifies members of recent breach
John Leyden of The Register reports that the EC-Council sent out a notification to its members about the February breach noted previously on this blog. Here’s the full text of their message: On Saturday, February 22nd, 2014, the ICANN-accredited domain registrar of EC-Council was compromised and as a result, EC-Council suffered a DNS Poisoning attack,…