A Chinese based Electronics Giant has had its website hacked by the Turkish Ajan hacker group which has carried out many high profile attacks in the past. The target this time is CASIO (www.casio.com.cn) who is a long term player in the electronics game and well known all around the world. > Casio Computer Co., Ltd. (カシオ計算機株式会社 Kashio Keisanki Kabushiki-gaisha?) is amultinational electronics…
String of cyber attacks by Anonymous for #OpBigBrother and #IDP13
This weekend has seen the coming of yet another Anonymous based operation that has now left many sites being victims of cyber attacks. The attacks have been carried out in the name of OpBigBrother and more so #IDP13 or International day for privacy which was set for the 23rd of Feb 2013. Many of the…
Crowd-sourcing an idea for a law
Thanks to partisan politics and intensive industry lobbying, we have no strong federal breach notification law. This, of course, is not news to my readers. But in light of (1) Congress’s current interest in cybersecurity and sharing of information, (2) the fact that up to 40% of breaches are first detected by members of the…
Should the penalty be for the data breach or for aiding and abetting fraud?
Philip Virgo writes: I have just had interesting feed back from a number of CISOs on my posting on the EU data Protection Directive. Some are still stuck in the past, adding yet more electronic nappies to cope with severe cases of data diarrhoea. Others are seeking to make the transition to a future where attack is…
Hello, you appear to have been hacked. Hello? Anyone there?
I’ve occasionally blogged about how frustrating it can be to try to notify an organization that they’ve apparently been hacked or had a breach. When that organization is a hospital and I can’t reach anyone, it’s even more frustrating. This week, it happened again. I ranted in Twitter a bit, and Jake Kouns suggested I…
Is Kively.com revealing user info?
On February 7, a site reader alerted me to a possible problem over on Kively.com: Look at the description directory – it reveals all the PII when there is some in the descriptor. After looking at the description directory, I found myself wondering about whether some of the entries were, in fact, disclosing some PII. Instead…