Jonathan Stempel reports: Federal prosecutors on Monday announced the indictment of three men they accuse of being members of an international cybercrime ring that tried to steal at least $15 million by hacking into U.S. customer accounts at 14 financial institutions and the Department of Defense’s payroll service. Oleksiy Sharapka, 33, and Leonid Yanovitsky, 39,…
Category: Of Note
Missed Alarms and 40 Million Stolen Credit Card Numbers: How Target Blew It
I finally got around to reading this fascinating report by Michael Riley, Ben Elgin, Dune Lawrence, and Carol Matlack for Bloomberg Businessweek. This goes far beyond other media coverage about how Target “missed” or “ignored” FireEye alerts and really gives more details of how the breach occurred.
Be Careful Beating Up Target (Part 1)
Craig Carpenter of AccessData writes: A flurry of stories surfaced this week, including those in Bloomberg BusinessWeek and InformationWeek, highlighting signals of compromise that Target apparently “missed” or even “ignored”, resulting in the theft of 40 million credit card accounts. Clearly the Target breach was serious and wide-ranging, as it affected a large number of customers and even hit…
How to avoid a €100 million data fine in Europe
Jennifer Baker reports: A law approved by the European Parliament on Wednesday and aimed at protecting citizens’ privacy comes with sweeping penalties for breaches—up to €100 million (US$139 million) or 5 percent of global annual turnover, whichever is larger. The European Data Protection Regulation will apply not only to European companies, but any company that…
UK: Morrisons supermarket suffers major payroll data breach (Updated)
John E. Dunn reports: British supermarket Morrisons has reportedly suffered a major data breach which saw the pay-roll data of an unknown number of its 100,000 staff stolen and published on a website. In an email sent to staff and later seen by TV media, the attack was said to have involved the theft of…
Target ignored its own warning system – Bloomberg (updated)
I’m watching Josh Tyrangiel of Bloomberg on CBS News this morning reporting that prior to its massive breach, Target ignored the warning alerts generated by its FireEye system. Target hasn’t responded to Bloomberg’s questions as to why the warning e-mails generated by the system were ignored. Interestingly, we heard something similar in the Neiman-Marcus breach where…