Data Security
Windows DLL load hijacking exploits go wild
Less than 24 hours after Microsoft said it couldn’t patch Windows to fix a systemic problem, attack code appeared Tuesday to exploit the company’s software. Also on Tuesday, a security firm that’s been researching the issue for the last nine months said 41 of Microsoft’s own programs can be remotely exploited using DLL load hijacking, [...]
Trojan blamed for Spanish air crash
A plane crash that killed 154 people in 2008 might have been partly connected to the infection of an important ground safety system by malware, a Spanish newspaper has claimed. The Spanair plane took off from Madrid to fly to the Canary Islands on 20 August 2008, but failed to clear the runway. Of the [...]
AMR Corporation Sends Letters to Certain Retirees and Employees Regarding Data Compromise and Offer
Today, AMR Corporation , the parent company of American Airlines, Inc., sent letters to potentially affected retirees, former employees, and a limited number of current employees about a compromise of certain personal information. The data, which had been kept by AMR’s pension department, spans a time period from 1960 through 1995, and consists of images [...]
BofA call center worker pleads guilty to data theft
A Bank of America call center employee has pleaded guilty to charges that he stole sensitive client information and then tried to sell it for cash. Brian Matty Hagen pleaded guilty last week to one count of bank fraud. According to court filings he allegedly recorded customer account information when BofA customers called him for [...]
Computer contractor gets five years for $2M credit union theft
Zeldon Morris, a Provo, Utah computer contractor, was sentenced on Wednesday to more than five years in prison after pleading guilty to stealing close to $2 million from four credit unions that he performed IT services for. via Computer contractor gets five years for $2M credit union theft.
1.5 million stolen Facebook IDs up for sale
A hacker named Kirllos has a rare deal for anyone who wants to spam, steal or scam on Facebook: an unprecedented number of user accounts offered at rock-bottom prices. Researchers at VeriSign's iDefense group recently spotted Kirllos selling Facebook user names and passwords in an underground hacker forum, but what really caught their attention was [...]
Frustrations with cloud computing mount
Cloud computing lacks standards about data handling and security practices, and even whether a vendor has an obligation to tell users whether their data is in the U.S. or not. And the industry is only beginning to sort out these issues through groups, such as the year-old Cloud Security Alliance. via Frustrations with cloud computing [...]
Company says 3.3 million student loan records stolen
Data on 3.3 million borrowers was stolen from a nonprofit company that helps with student loan financing. The theft occurred on March 20 or 21 from the headquarters of Educational Credit Management Corp. (ECMC), which services loans when student borrowers enter bankruptcy. The data was contained on portable media, said the organization, which is a [...]
HHS Adds to List of Data Breaches
The five new listings are: * Montefiore Medical Center, New York, 625 affected individuals, theft of a laptop; * Private Practice, San Antonio, 21,000 affected individuals, theft of a portable device; * Thrivent Financial for Lutherans, Wisconsin, 9,500 affected individuals, theft of a laptop; * Wyoming Department of Health, 9,023 affected individuals, unauthorized access of [...]
Hackers pluck 8,300 customer logins from bank server
Hackers have stolen the login credentials for more than 8,300 customers of small New York bank after breaching its security and accessing a server that hosted its online banking system. via Hackers pluck 8,300 customer logins from bank server • The Register.
