Hack

Kaspersky breach exposes sensitive database, says hacker

Dan Goodin reports: A security lapse at Kaspersky has exposed a wealth of proprietary information about the anti-virus provider’s products and customers, according to a blogger, who posted screen shots and other details that appeared to substantiate the claims. In a posting made Saturday, the hacker claimed a simple SQL injection gave access to...

Add Dime Savings Bank of Williamsburgh to list….

Kid #1 came in last night and threw the letter down on my desk in disgust. For the second time since June, Dime Savings Bank of Williamsburgh had notified him that his debit card was being replaced due to a breach and that he would have to personally come in to the bank to...

Huge bank card scam hits Bermuda

How curious…. Canadian Tire had told me that 2% of their customers’s cards had been misused as a result of the Heartland Payment Systems breach. Now another non-US entity mentions 2%. Have we gotten reports from any UK banks yet? Hundreds of debit and credit card customers in Bermuda have been dragged into one...

More Heartland Details Leak Out (And Some May Be Trying To Leak Back In)

Evan Schuman reports: Details surrounding the Heartland data breach continue to dribble out, with one respected payment systems newsletter reporting that the forensic investigators Heartland brought in were Cybertrust and Neohapsis. Heartland had tried keeping those names confidential, an effort that was succeeding prior to the Wednesday, Feb. 4 issue of The Nilson Report....

Quick Poll: Many Smaller Banks Hit By Heartland Breach

Brian Krebs reports: In another sign that the recently disclosed data breach at credit card processing giant Heartland Payment Systems may indeed be one for the record books, a quick survey of community banks indicates that a majority of institutions have been notified that at least some of their debit or credit cards were...

Consumer Electronics Company Agrees to Settle Data Security Charges; Breach Compromised Data of Hundreds of Consumers

An online seller of computer supplies and other consumer electronics has agreed to settle Federal Trade Commission charges that it violated federal law by failing to provide reasonable security to protect sensitive customer data. According to the FTC’s complaint, Compgeeks.com (Compgeeks), which operates the www.geeks.com Web site, and its parent company, Genica Corporation (Genica),...

Susquehanna Upgrades Heartland Payment Systems (HPY) to Neutral

Susquehanna analyst says, “We are upgrading HPY to Neutral from Negative, as it has achieved our price objective. Although considerable risk persists related to the credit/debit card data breach disclosed last month, we believe such penalties are contemplated in the current valuation. We consulted a range of experts, including reformed hackers, data security auditors...

phpBB hacked, 400,000+ account details intercepted

The online bulletin board phpBB (php Bulletin Board) was taken offline on Sunday, following a security breach that allowed access to user account details. phpBB is an open-source software package used to run discussion forums on web sites. The breach was caused when the attacker gained access through an unpatched security bug in PHPlist,...

Ca: Hacked Trent server housed some personal information

Andrea Houston reports: Trent University is sending out alert letters to several donors and alumni after an off-site computer server containing some personal information was recently hacked. Dianne Lister, vice-president of external relations, said a power surge between Dec. 22 and Jan. 7 caused the firewall to fail, which left the server unprotected to...

NameDrive Breached, Less Than 1% of Accounts Affected

E-mail addresses and passwords for a limited number of NameDrive customers were obtained and posted in a hacker forum this month. The security breach just came to light today. NameDrive has responded by instituting new security measures including password resets: We were alerted of a possible security breach affecting less than 1% of our...