National Network of Abortion Funds reports hack

I suppose some would consider this hacktivism…

The National Network of Abortion Funds reports that its Bowl-A-Thon site was attacked on or about April 7. Fake comments were posted, fake donations were submitted, and fake donation activity threatened to disrupt the functionality of the site. Some registered users received offensive emails.

Forensic investigation determined that as part of the attack, malicious code was inserted that allowed the attacker(s) to capture payment card information during transmission of donations.

While those notified were offered credit protection services through AllClearID, of as much concern is the fact that the attacker(s) captured not only email addresses but physical (postal) addresses of donors, leaving donors in possibly anxious states that they will be contacted or approached at home.

NNAF did not respond to an inquiry from DataBreaches.net seeking additional details of the attack, and they did not disclose the number of people affected. Although they appear to use authorize.net for credit card processing, it is not clear as to who was responsible for securing their data.

 

 

About the author: Dissent

Comments are closed.