The Turkish hacktivist collective RedHack claims to have hacked Turkish ISP TTNET as well as mobile operator Vodafone and Turkcell. They announced the hack this afternoon: Customer data of ISP TTNET, mobile operator Vodafone and Turkcell infiltrated and vast amount of data collected from the systems. + — RedHack_EN (@RedHack_EN) February 3, 2014 They also claim…
Category: Of Note
South Korean card firms suspended over data breach
I remember the cheers at school football and basketball games, “We don’t mess around – HEY! We don’t mess around – HEY!” I thought of that while reading a news story this morning with a follow-up to a breach affecting 15-20 million South Korean credit card holders by a contractor’s employee: South Korean authorities have…
NullCrew attack on Bell Canada was SQL injection and Bell knew weeks ago – NullCrew (update 2)
NullCrew has responded to Bell’s claim that it was a third-party supplier who got hacked by providing DataBreaches.net with more details about the hack and their conversations with Bell alerting them to the breach. In an interview today, NullCrew revealed that they had access to Bell’s server for months, and had disclosed that to them…
NullCrew claims to have hacked Bell Canada (Update 1)
Update: Bell Canada did not respond to the email they received from DataBreaches.net, but reportedly did send a statement last night to Canada.com, saying “Bell IT and security teams are investigating the situation and will provide further update tomorrow.” NullCrew is back, and claims to have hacked Bell Canada. In a tweet on January 15, they…
Commission Statement Marking the FTC’s 50th Data Security Settlement – January 31, 2014
Today marks a milestone for the Federal Trade Commission – the announcement of the Commission’s 50th data security settlement. What started in 2002 with a single case applying established FTC Act precedent to the area of data security has grown into a vital enforcement program that has helped to increase protections for consumers and has encouraged companies to make…
Provider of Medical Transcript Services Settles FTC Charges That It Failed to Adequately Protect Consumers’ Personal Information
Press release from the FTC, followed by my comments: A company that provides medical transcription services has agreed to settle Federal Trade Commission charges that its inadequate data security measures unfairly exposed the personal information of thousands of consumers on the open Internet, in some instances including consumers’ medical histories and examination notes. In its complaint…