Oops. An overlooked server that was not configured for two-factor authentication became the weak link in JPMorgan’s defenses. Matthew Goldstein, Nicole Perlroth, and Michael Corkery report: The computer breach at JPMorgan Chase this summer — the largest intrusion of an American bank to date — might have been thwarted if the bank had installed a simple…
Category: Of Note
IN: AG Zoeller, Sen. Merritt propose legislation to protect Hoosiers from identity theft, data breaches
Press release: In response to growing concerns about online privacy and data protection, Indiana Attorney General Greg Zoeller today announced a legislative proposal to provide greater safeguards of Hoosiers’ personal and financial information online. Zoeller’s proposal has three main components aimed at providing stricter requirements for the safe storage of sensitive data, reducing harm to…
Sony Hackers Snooped for Months, Then Planted 10-Minute Time Bomb
Pavel Alpeyev and Grace Huang report: Hackers who broke into Sony Corp.’s Hollywood unit probably spent months collecting passwords and mapping the network before they committed a last act of vandalism, setting off a virus that wiped out data and crashed the system in 10 minutes. Trend Micro Inc. arrived at these conclusions after running…
Hackers demand Sony remove all signs The Interview existed or more data will be released
Jacob Kastrenakes reports: The hackers who attacked Sony Pictures are making more demands of the studio following their success in scrapping the release of The Interview, according to CNN. CNN reports that top Sony executives received an email from the hacking group last night with a message saying that it would withhold further data, but only if the studio never let…
FBI Update on Sony Investigation
Today, the FBI would like to provide an update on the status of our investigation into the cyber attack targeting Sony Pictures Entertainment (SPE). In late November, SPE confirmed that it was the victim of a cyber attack that destroyed systems and stole large quantities of personal and commercial data. A group calling itself the…
Misfortune Cookie crumbles router security: ’12 MILLION+’ in hijack risk
John Leyden reports: Infosec biz Check Point says it has discovered a critical software vulnerability that allows hackers to hijack home and small business broadband routers across the web. The commandeered boxes can be used to launch attacks on PCs and gadgets within their local networks. More than 12 million low-end SOHO routers worldwide are…