Orin Kerr writes: Senator Feinstein recently claimed that the CIA may have violated the federal computer hacking statute, the Computer Fraud and Abuse Act, by searching computers used by the Intelligence Committee to conduct CIA oversight. Based on the facts we know so far, I’m skeptical of the claim that the CIA violated the statute. This post…
Category: Hack
Target ignored its own warning system – Bloomberg (updated)
I’m watching Josh Tyrangiel of Bloomberg on CBS News this morning reporting that prior to its massive breach, Target ignored the warning alerts generated by its FireEye system. Target hasn’t responded to Bloomberg’s questions as to why the warning e-mails generated by the system were ignored. Interestingly, we heard something similar in the Neiman-Marcus breach where…
EC-Council notifies members of recent breach
John Leyden of The Register reports that the EC-Council sent out a notification to its members about the February breach noted previously on this blog. Here’s the full text of their message: On Saturday, February 22nd, 2014, the ICANN-accredited domain registrar of EC-Council was compromised and as a result, EC-Council suffered a DNS Poisoning attack,…
Loyaltybuild reopens for business after huge data breach
Elaine Edwards reports: The company at the centre of the biggest data breach ever dealt with in Ireland has recommenced trading and said it had invested €500,000 in new security systems after the criminal attack last year. Ennis-based Loyaltybuild, which provides services to companies running holiday break promotions, was hit by the breach late last year and it…
University of Maryland data breach smaller than first thought
WBAL reports: The data breach at the University of Maryland is smaller than first announced. According to the university’s website, there were 287,580 records breached, about 21,499 fewer than first reported. But here’s the better-late-than-never news of note: The school said 78 percent of the records in the affected database have now been permanently purged,…
NoMoreRack.com Probes Possible Card Breach
For the second time since Aug. 2013, online retailer NoMoreRack.com has hired a computer forensics team after being notified by Discover about a potential breach of customer card data, KrebsOnSecurity has learned. Read more on KrebsOnSecurity.com.