Today, the FBI would like to provide an update on the status of our investigation into the cyber attack targeting Sony Pictures Entertainment (SPE). In late November, SPE confirmed that it was the victim of a cyber attack that destroyed systems and stole large quantities of personal and commercial data. A group calling itself the…
Category: Of Note
Misfortune Cookie crumbles router security: ’12 MILLION+’ in hijack risk
John Leyden reports: Infosec biz Check Point says it has discovered a critical software vulnerability that allows hackers to hijack home and small business broadband routers across the web. The commandeered boxes can be used to launch attacks on PCs and gadgets within their local networks. More than 12 million low-end SOHO routers worldwide are…
ICANN hackers sniff around global DNS root zone system
Kieren McCarthy reports: Domain-name overseer ICANN has been hacked and its root zone administration system compromised, the organization has said. Attackers sent staff spoofed emails appearing to coming from icann.org. The organization notes it was a “spear phishing” attack, suggesting employees clicked on a link in the messages, and then typed their usernames and passwords…
The Evidence That North Korea Hacked Sony Is Flimsy (updated)
Kim Zetter reports: Today Sony canceled the premier of “The Interview” and its entire Christmas-Day release of the movie because of fears that terrorists might attack the theater showing the film. The actions show just how much power the attackers behind the Sony hack have amassed in a short time. But who exactly are the…
Sony Pictures admits HIPAA data might have been compromised during breach
Steve Ragan reports: In a breach notification letter sent to employees this week, Sony Pictures outlines the full scope of data that was compromised by attackers shortly before the Thanksgiving holiday. […] “In addition, unauthorized individuals may have obtained (ix) HIPAA protected health information, such as name, Social Security Number, claims, appeals information you submitted…
Agency Allowed Google To Index Info About Serbian Citizens
InSerbia reports: BELGRADE – Agency for Privatization published, unauthorized, information about 5,190,396 citizens of Serbia, on its website with more than four thousand financial documents, Share foundation confirmed today. The text database with information (in total about 19 GB of content) was publicly available on the official website of the Agency for Privatization, Share foundation…