Alleged LulzSec hacker indicted for media site breaches

By on June 14, 2012 at 1:10 PM.

Alleged LulzSec hacker indicted for media site breaches

LulzSec Hacker Indicted

An alleged LulzSec hacker won’t be having many more lulz if he’s thrown in jail. Per the Los Angeles Times, 20-year-old British man Ryan Cleary has been indicted by a federal grand jury in Los Angeles for allegedly hacking into several major media websites including the sites for the Fox reality show “The X-Factor” and PBS’s “News Hour.” Cleary hacked into the sites to either deface them or steal peoples’ personal data, the indictment alleges, and he could face up to 25 years in prison if convicted. In all, Cleary faces one count of conspiracy and two counts of the unauthorized impairment of protected computers. More →

No Comments

Dark side of ‘Anonymous’ comes out in new interview

By on June 13, 2012 at 1:15 PM.

Dark side of ‘Anonymous’ comes out in new interview

Anonymous Hackers Interview

It’s no mystery that the hackers behind notorious “hacktivist” groups Anonymous and LulzSec cause a tremendous amount of trouble for the companies and agencies they target, but thousands of young web users cheer them on with the belief that these groups are fighting for Internet freedom around the world. According to a recent profile, however, this isn’t always the case. In a rare in-depth interview with Anonymous members, The Daily Beast’s Parmy Olson uncovers the dark side of Anonymous, likening the divide between the group’s activist members and its pranksters to Batman and the Joker. While some Anonymous members indeed look to topple oppressors, others simply “try to cause chaos, lulz, whatever to have fun.” And while many hacker activists continue to fight the good fight, as they view it, the more playful Anonymous hackers are skeptical that they will ever really make a difference. “I don’t think [Anonymous] can change much in the world,” one group member told The Daily Beast. Parmy’s full interview is linked below. More →

No Comments

Last.fm says user passwords were leaked

By on June 7, 2012 at 2:05 PM.

Last.fm says user passwords were leaked

Last.fm Passwords Hacked Leaked

Custom Internet radio provider Last.fm on Thursday confirmed that passwords belonging to an unspecified number of it users have been compromised. “We are currently investigating the leak of some Last.fm user passwords,” the company said in a statement on its website. “This follows recent password leaks on other sites, as well as information posted online. As a precautionary measure, we’re asking all our users to change their passwords immediately.” The news comes just one day after LinkedIn confirmed an attack that saw passwords belonging to nearly 6.5 million members posted on the Web. Last.fm recommends that all of its users change their passwords immediately. More →

No Comments

What it's like to get hacked

By on June 7, 2012 at 12:15 PM.

What it's like to get hacked

Hacked Insider Account

With “hacktivist” groups like Anonymous and stories like the LinkedIn security breach constantly popping up in the news, it’s easy to grow numb to matters of digital security despite their seriousness. Individuals, businesses and even governments are vulnerable, and while the public is often privy to one side of the story thanks to security conferences and outspoken hacker groups, personal accounts of how the individuals responsible for protecting the networks, websites and devices that get hacked are few and far between. More →

No Comments

'Anonymous' hackers release 1.7GB of stolen DOJ data

By on May 22, 2012 at 4:00 PM.

'Anonymous' hackers release 1.7GB of stolen DOJ data

Anonymous DOJ Hack

Hackers associated with well known hacker-activist group “Anonymous Operations” have released a massive cache of data they say was obtained when they hacked a website belonging to the United States Department of Justice. “Today we are releasing 1.7GB of data that used to belong to the United States Bureau of Justice, until now,” Anonymous wrote in a statement on its website. The hackers claim the file contains emails as well as “the entire database dump” from the DOJ website. More →

No Comments

U.S. House passes CISPA

By on April 26, 2012 at 7:00 PM.

U.S. House passes CISPA

The United States House of Representatives has voted to pass the controversial Cyber Intelligence Sharing and Protection Act (CISPA), talk of which has swept the Internet over the past few weeks. The House vote was moved up to Thursday night, and CISPA passed as 248 members of Congress voted for the bill and 168 voted against. The bill is sponsored by Representatives Mike Rogers (R-Michigan) and Dutch Ruppersberger (D-Maryland), and it now faces further modifications in the Senate if it is to avoid being vetoed by the White House. President Barack Obama has indicated that he intends to veto the bill if it makes it to his desk, noting that as it is written now, the legislation would allow “broad sharing of information with governmental entities without establishing requirements for both industry and the government to minimize and protect personally identifiable information.” The American Civil Liberties Union issued a statement following the vote. “Cybersecurity does not have to mean abdication of Americans’ online privacy,” said ACLU legislative counsel Michelle Richardson. “As we’ve seen repeatedly, once the government gets expansive national security authorities, there’s no going back. We encourage the Senate to let this horrible bill fade into obscurity.” More →

No Comments

Thousands rally against CISPA cybersecurity bill

By on April 26, 2012 at 12:45 PM.

Thousands rally against CISPA cybersecurity bill

The controversial Cyber Intelligence Sharing and Protection Act (CISPA), which is supported by more than 100 members of the House of Representatives, is scheduled to be discussed in Congress on Friday, where it will be the first bill to go to a vote since the collapse of the Stop Online Piracy Act (SOPA) in January. The bill looks to give businesses and the federal government legal protection to share cyber threats with one another in an effort to prevent online attacks. Internet privacy and neutrality advocates, such as the Electronic Frontier Foundation, feel the bill does not contain enough limits on how and when the government may monitor private information, however, and they fear that such power may be used to locate and punish file sharers and those who infringe on copyrights rather than hackers. More →

No Comments

Malware found to steal credit card data from hotel payment systems

By on April 20, 2012 at 8:20 PM.

Malware found to steal credit card data from hotel payment systems

Security firm Trusteer warned this week of a trojan that is capable of stealing an individual’s credit card information from hotels. The firm’s intelligence team discovered the remote access trojan being sold on underground forums for $280. The malware is designed to capture screenshots from point-of-sale applications that access credit card numbers and expiration dates. These systems are located on front-desk computers at hotels, and they are often unmanaged and do not contain anti-virus protections software that would stop a trojan of this type. The malware’s creators also include instructions on how to use VoIP-based social engineering to trick front-desk clerks into installing the trojan. More →

No Comments

Visa drops Global Payments following theft of 1.5 million card numbers

By on April 2, 2012 at 6:35 PM.

Visa drops Global Payments following theft of 1.5 million card numbers

Following a massive security breach, Visa has dropped Global Payments from its registry of providers that meet data security standards, The Associated Press reported on Monday. Global Payments CEO Paul Garcia said that the company will continue to process Visa transactions, however being dropped from the registry “could give our partners some pause that they’re doing business with someone who experienced a breach.” Garcia fully expects his company to be reinstated once it has been issued a new report of compliance, although he declined to specify when that might happen. The CEO maintains that the situation is “absolutely contained” and is being fully investigated. Global Payments confirmed on Sunday that hackers stole credit card numbers belonging to as many as 1.5 million MasterCard and Visa customers, however cardholder names, addresses and Social Security numbers were not compromised. The company plans to set up a website to assist consumers who might have been affected by the breach. More →

No Comments

Hackers steal 1.5 million card numbers in huge MasterCard, Visa breach

By on April 2, 2012 at 8:30 AM.

Hackers steal 1.5 million card numbers in huge MasterCard, Visa breach

Hackers stole credit card numbers belonging to as many as 1.5 million MasterCard and Visa customers, Global Payments, Inc. confirmed on Sunday. The international credit card processor was blocked by Visa after it reported the possibility of a major security breach on Friday. The company did not indicate how the hackers gained access to its system or who might be responsible for the attack. “Based on the forensic analysis to date, network monitoring and additional security measures, the company believes that this incident is contained,” the firm told The Wall Street Journal while noting that cardholder names, addresses and Social Security numbers were not compromised. The company did say that the credit card numbers were downloaded during the attack rather than just being accessed, however, indicating that the perpetrators may intend to use the information to create counterfeit credit cards. Affected Visa and MasterCard customers have not yet been notified that their account information was stolen.

No Comments

MasterCard and Visa warn of possible massive security breach

By on March 30, 2012 at 2:30 PM.

MasterCard and Visa warn of possible massive security breach

The world’s two largest credit card processors have notified U.S. banks of a potential security breach that may affect more than 10 million cardholders, Reuters reported on Friday. MasterCard and Visa have said that the issue was the result of a third-party vendor and not their own internal systems. MasterCard said it has taken the proper steps by alerting law enforcement officials and hiring an independent data-security organization to review the possible breach. “MasterCard is concerned whenever there is any possibility that cardholders could be inconvenienced and we continue to both monitor this event and take steps to safeguard account information,” the company said in a statement. “If cardholders have any concerns about their individual accounts, they should contact their issuing financial institution.” Visa made sure to emphasize that its customers are not responsible for any potential fraudulent charges. More →

No Comments

Hackers can easily steal credit card info, other data from used Xbox consoles [update]

By on March 30, 2012 at 8:45 AM.

Hackers can easily steal credit card info, other data from used Xbox consoles [update]

Using nothing more than a few common tools, hackers can reportedly recover credit card numbers and other personal information from used Xbox 360 consoles even after they have been restored to factory settings. Researchers at Drexel University say they have successfully recovered sensitive personal data from a used Xbox console, and they claim Microsoft is doing a disservice to users by not taking precautions to secure their data. “Microsoft does a great job of protecting their proprietary information,” researcher Ashley Podhradsky told Kotaku in an interview. “But they don’t do a great job of protecting the user’s data.” In order to avoid potential data theft, Podhradsky recommends users remove the hard drives from their consoles and wipe them while connected to a PC using special software. The Drexel researcher warns that not taking this precaution could have serious consequences. “A lot of [modders and hackers] already know how to do all this,” she said. “Anyone can freely download a lot of this software, essentially pick up a discarded game console, and have someone’s identity.”

UPDATE: Microsoft contacted BGR via email with a statement regarding Kotaku’s report, which can be read below in its entirety. More →

No Comments

The U.S. government is losing the war against hackers

By on March 28, 2012 at 6:20 PM.

The U.S. government is losing the war against hackers

Executive assistant director of the FBI Shawn Henry, who after more than two decades is preparing to leave the bureau, said in an interview with The Wall Street Journal that computer criminals are too talented and current defensive measures are too weak to stop them. “We’re not winning,” he said, claiming that the current public and private approach to fighting off hackers is “unsustainable.” Congress is currently considering two competing bills that are designed to strengthen critical U.S. infrastructures such as power plants and nuclear reactors. Henry believes that companies must make major changes in the way they use computer networks to avoid further damage to national security and the economy, however. He said too many companies don’t recognize the financial and legal risks they are taking by operating vulnerable networks. “I don’t see how we ever come out of this without changes in technology or changes in behavior, because with the status quo, it’s an unsustainable model,” Henry said. “Unsustainable in that you never get ahead, never become secure, never have a reasonable expectation of privacy or security.” More →

No Comments