A hacker named Kirllos has a rare deal for anyone who wants to spam, steal or scam on Facebook: an unprecedented number of user accounts offered at rock-bottom prices.
Researchers at VeriSign's iDefense group recently spotted Kirllos selling Facebook user names and passwords in an underground hacker forum, but what really caught their attention was the volume of credentials he had for sale: 1.5 million accounts.
via 1.5 million stolen Facebook IDs up for sale.
Cloud computing lacks standards about data handling and security practices, and even whether a vendor has an obligation to tell users whether their data is in the U.S. or not. And the industry is only beginning to sort out these issues through groups, such as the year-old Cloud Security Alliance.
via Frustrations with cloud computing mount.
Data on 3.3 million borrowers was stolen from a nonprofit company that helps with student loan financing.
The theft occurred on March 20 or 21 from the headquarters of Educational Credit Management Corp. (ECMC), which services loans when student borrowers enter bankruptcy. The data was contained on portable media, said the organization, which is a dedicated guaranty agency for Virginia, Oregon and Connecticut.
via Company says 3.3 million student loan records stolen.
The five new listings are:
* Montefiore Medical Center, New York, 625 affected individuals, theft of a laptop;
* Private Practice, San Antonio, 21,000 affected individuals, theft of a portable device;
* Thrivent Financial for Lutherans, Wisconsin, 9,500 affected individuals, theft of a laptop;
* Wyoming Department of Health, 9,023 affected individuals, unauthorized access of a network server; and
* Aspen Dental Care P.C., Colorado, 2,500 affected individuals, theft of an undisclosed nature.
via HHS Adds to List of Data Breaches.
Hackers have stolen the login credentials for more than 8,300 customers of small New York bank after breaching its security and accessing a server that hosted its online banking system.
via Hackers pluck 8,300 customer logins from bank server • The Register.
Three men accused of being involved an audacious attack on US ATM machines in 2008 have been arrested by the feared Russian Security Service (FSB) in an event that is being interpreted as marking a sea change in Russian policy towards cybercrime.
via Russia arrests WorldPay hackers after FBI plea.
The idea behind the Verizon Business incident sharing metrics framework, which underpins the company's highly regarded data breach investigation reports, is that those who do not learn from security incidents are doomed to repeat them.
With that in mind, Verizon today released its Verizon Incident Sharing framework (VerIS), a move aimed at helping enterprises consistently analyze and share incident data, whether internally or with each other.
via Verizon shares framework to gather, analyze security incident data.
People who stayed at the Westin Bonaventure Hotel & Suites in Los Angeles last year and used their credit or debit card to eat there should keep a close eye on their bank statements.
Hotel officials disclosed Friday that the hotel's four restaurants, along with its valet parking operation, may have been hacked at some time between April and December, disclosing names, credit card numbers and expiration dates printed on customers' debit and credit cards.
via Westin hotel in LA reports possible data breach.
Ongoing computer scams targeting small businesses cost U.S. companies US$25 million in the third quarter of 2009, according to the U.S. Federal Deposit Insurance Corporation.
Online banking fraud involving the electronic transfer of funds has been on the rise since 2007 and rose to over US$120 million in the third quarter of 2009, according to estimates presented Friday at the RSA Conference in San Francisco, by David Nelson, an examination specialist with the FDIC.
via FDIC: Hackers took more than $120M in three months.
A senior Indian banker has been arrested by Indian police for an online fraud in which hackers siphoned close to 2.7 million Indian rupees ($60,000) from a bank account, a senior police official of the Indian state of Tamil Nadu said on Wednesday.
via Indian banker charged with online funds fraud.
