Hack

The Vernon Company database accessed; customers notified

Iowa-based The Vernon Company recently discovered that its system had been accessed via its vernoncompany.com web site. The breach was discovered on October 6, and the company shut down the web site until it could patch the vulnerabilities were patched. Further investigation suggested that the breach originated in Singapore, and may have occurred as...

UPDATE: Credit cards also involved in Cheers Liquor breach

Wayne Heilman reports: A security breach in the credit-card processing system at Cheers Liquor Mart involves both credit and debit cards and likely involves customers of dozens, if not hundreds, of financial institutions nationwide, the Colorado Springs-based retailer said today. Cheers has shut down a wireless broadband system that was used to process credit-card...

Two major German websites report data theft

AP/Reuters reports two data breaches out of Germany: SchülerVZ, an online forum for German teenagers and high school students, has said it has identified the person it suspects of stealing the data, which include the name, age, school, gender, and photo of thousands of users. A more serious breach involves the names, client numbers,...

Debit card breach is traced to Cheers Liquor Mart

Wayne Heilman reports: A debit card breach affecting thousands of Colorado Springs area cardholders resulted from outside hackers gaining access to Cheers Liquor Mart’s computer system sometime last month, owners of the Springs-based retailer said Friday. Cheers hired Cyopsis LLC, a Denver-based information technology forensics and investigations firm, to determine the source of the...

Student data stolen from National Institute of Educational Testing Service

Earlier this month, The Nation reported that Thailand’s National Institute of Educational Testing Service (“NIETS”) web site had been downed by denial of service attacks and had been offline between Wednesday through Friday. The Nation subsequently reported that NIETS learned that information about some 1,000 students were stolen by hackers in the attack. Deputy...

PayChoice Suffers Another Data Breach

Brian Krebs reports: Payroll services provider PayChoice took its Web-based service offline for the second time in a month on Wednesday in response to yet another data breach caused by hackers. Moorestown, N.J. based PayChoice, provides direct payroll processing services and licenses its online employee payroll management product to at least 240 other payroll...

Big-Box Breach: The Inside Story of Wal-Mart’s Hacker Attack

Kim Zetter reports: Wal-Mart was the victim of a serious security breach in 2005 and 2006 in which hackers targeted the development team in charge of the chain’s point-of-sale system and siphoned source code and other sensitive data to a computer in Eastern Europe, Wired.com has learned. Internal documents reveal for the first time...

Expert provides more proof hackers hijacked Hotmail accounts

Gregg Keizer reports: It’s almost certain that hackers obtained the Hotmail passwords that leaked to the Internet through a botnet-based attack, a researcher said today as she provided more proof that Microsoft’s explanation was probably off-base. “When I look at the infamous list of 10,000 Hotmail accounts, it just does not appear to be...

Cyberthieves find workplace networks are easy pickings

Byron Acohido provides a write-up of some of the TJX and Heartland Payment Systems incidents that emphasizes the point that many hacks go undetected or unnoticed — and that cyberthieves often take considerable time to start and continue stealing data: Companies, understandably, rarely discuss data breaches. However, proof that data thieves are targeting hundreds...