Before i answer this question let me give you a screenshot of the following FBI Cyber most wanted: from www.fbi.gov/wanted/cyber Alexsey Belan: Belan allegedly stole the user data and the encrypted passwords of millions of accounts and then negotiated the sales of the databases. Two separate federal arrest warrants for Belan have been issued. One … Read more
And this issue even though being a “new news story” as of 6 hours ago from ibtimes.cp.uk http://www.ibtimes.co.uk/starbucks-customer-accounts-hacked-through-smartphone-apps-1501118 Which originally got going with Bob Sullivan’s ‘scoop’ yes there is no need to know the account number, because all that is needed is the username, which is not the account number. I have a … Read more
Richard Bejtlich has a new post (as of May 10) http://taosecurity.blogspot.com/ He set out a few excerpts of a 1978 book “Computer Capers” by Thomas Whiteside. To me the most interesting excerpt(2nd): “The difficulties of catching up with the people who have committed computer crimes is compounded by the reluctance of corporations to talk about the … Read more
Yes I am sure you heard the saying: If you fail to plan, Plan to fail How does one plan for as secure as possible while also meeting business objectives? Harry Folloder(CIO of Advantage WaypointLLC – 10$Bil in food service sales) has 6 tips in this article: http://www.darkreading.com/attacks-breaches/building-a-stronger-security-strategy-6-tips/a/d-id/1320247? Being in charge of a large IT … Read more
This story is unique: https://threatpost.com/wordpress-sites-backdoored-leaking-credentials/112703 A partial list of hacked sites are available on the link above (threatpost site from Zscaler research) : (Screenshot of Threatpost partial list) And the full list is here from Zscaler Threatlab website: http://research.zscaler.com/2014/12/compromised-wordpress-sites-serving.html Please do not go to the websites as they will give you malware.I went to one, … Read more
