Craig Hoffman discusses a ruling in a lawsuit against RockYou over a security breach that is noteworthy for the plaintiff’s somewhat novel approach to demonstrating injury due to the breach: A December 2009 SQL injection attack against social network application maker RockYou.com’s database resulted in the breach of 32 million log-in credentials ( e-mail address…
Category: Hack
Hackers may have accessed more than 25,000 South Carolina students’ personal info
The identity of thousands of students and teachers has potentially been compromised after officials with the Lancaster County School District say a hacker was able to access their system. According to school officials, the hackers were able to hack into the district’s system by monitoring district computers and capturing keystrokes to get passwords. Those passwords…
ESA hack did not breach internal network
Jack Clark reports: The European Space Agency has confirmed that a hacker entered its FTP servers and took sensitive data, including hundreds of passwords. The data breach exposed more than 200 usernames, passwords and email addresses, as well as server logs, the agency said on Tuesday. A Romanian hacker named ‘TinKode’ has claimed responsibility for…
Two suspects in Hyundai Capital hacking caught
Kim Tae-jong reports the latest in a breach involving Hyundai Capital reported previously on this blog: Police arrested two suspects Monday on charges of hacking Hyundai Capital’s database and blackmailing the company by threatening to release confidential customer financial information. A 40-year-old man, surnamed Huh, is thought to be the key figure who facilitated the…
Pryor Urges FTC to Investigate Data Breach that Exposes Millions of Consumers
U.S. Senator Mark Pryor has sent a letter to the Federal Trade Commission urging the Chairman to investigate the recent data breach of Epsilon, an online marketing firm that handles email lists for companies such as Target, Best Buy, Walgreens, and Citi Group. Pryor said the information that was stolen is likely limited to e-mail…
WordPress Hack Puts Government and Commercial Clients at Risk
Jessica Herrera-Flanigan reports: Continuing the trend in recent weeks of high-profile sites being attacked, the open source blog program WordPress announced that it was hacked on Wednesday and the hackers potentially made off with “anything.” In a note posted on the WordPress webblog, founder Matt Mullenweg stated “Tough note to communicate today: Automattic had a…