Computer storage devices containing personal information on 800,000 California residents were lost following a disaster recovery exercise held by IBM and Iron Mountain on behalf of the California Department of Child Support Services (DCSS).
Imperva analyzes LulzSec’s attack tool
In its latest Hacker Intelligence Initiative report, Imperva analyzes remote and local file inclusion (RFI/LFI) attacks as favored by LulzSec.
GCHQ to get real-time access to personal traffic data
The EC Data Retention Directive is already in force in the UK as a Statutory Instrument – The Data Retention (EC Directive) Regulations 2009. A proposed new bill will now force ISPs and telecommunications providers to make this data available to law en…
Payment processor suffers data breach that exposes 50,000 credit card numbers
Global Payments, an Atlanta-based credit and debit card processor for banks and merchants, has suffered a security breach that has exposed information on at least 50,000 cardholders, the Wall Street Journal reported.
Blackhole: the 1-day exploit kit
ESET has reported on the latest version of the Blackhole exploit kit, noting that it has been updated to include a recent Java vulnerability.
Our expert is better than your expert, says Hotfile to Warner Bros
Hotfile is being sued by Warner Bros (and others) – the MPAA – for copyright infringement; Hotfile is countersuing for bogus copyright infringement claims.
Yahoo commits to honoring Do-Not-Track
Do-Not-Track (DNT) is the evolving standard that will provide internet users with greater control over their privacy on the internet. “Yahoo websites worldwide will comply with visitors’ Do-Not-Track preferences starting later this year,” said the comp…
Mediyes trojan underscores need for proper key management
The discovery of the Mediyes trojan using a valid digital signature has raised concerns about the need for proper key management, noted John Grimm with Thales e-Security.
Top national security official pins RSA breach on China
The US government has evidence that Chinese hackers were responsible for the breach of RSA last year that compromised the company’s “underlying software” and required the replacement of hundreds of SecurID tokens, a top national security official told …
Carders Market leader pleads guilty to ID theft/fraud scheme
Chris Aragon, one of the leaders of the ID theft and fraud forum known as the Carders Market, has pled guilty to stealing thousands of personal identities and counterfeiting credit cards to buy high-end goods that were resold on eBay and craigslist.