Monthly Archives: March 2015

Men who Performed the Largest Data Breaches in History: Arrested

The Department of Justice reports, three men operating from Vietnam, the Netherlands, and Canada are accused of carrying out the largest data breach of names and email addresses in the history of the Internet. Two of the hackers, Viet Quoc … Continue reading

Posted in Security Blog | Tagged , , , , , , , , | Comments Off on Men who Performed the Largest Data Breaches in History: Arrested

Windows Vulnerable to FREAK

Microsoft confirms that most production versions of Windows are susceptible to the FREAK vulnerability in schannel (secure channel), where an attacker can force a downgrade in the SSL and then perform a man-in-the-middle attack. I last reported that FREAK only … Continue reading

Posted in Security Blog | Tagged , , , , , , , , , , , | Comments Off on Windows Vulnerable to FREAK

Hilary Clinton. Email Admin.

Perhaps its because Government servers are strong hacker and espionage targets. The New York Times reports that Hillary Clinton used only her personal email (hdr22@clintonemail.com) address while serving as Secretary of State. As others have reported, a hacker calling him … Continue reading

Posted in Security Blog | Tagged , , , , , | Comments Off on Hilary Clinton. Email Admin.

Factoring attack on RSA-EXPORT Keys (FREAK)

Researchers disclosed a new SSL/TLS vulnerability — the FREAK attack. The vulnerability allows attackers to intercept HTTPS connections between vulnerable clients and servers and force them to use ‘export-grade’ cryptography, which can then be decrypted or altered. The ssl3_get_key_exchange function … Continue reading

Posted in Security Blog | Tagged , , , , , , , , , , | Comments Off on Factoring attack on RSA-EXPORT Keys (FREAK)

I Just Want to Be Safe, I’m A ToysЯUs Kid!

Without getting breached, that they know of, Toys’Я’Us has seen numerous attempts to break into user accounts so they initiated a hard reset of all user accounts with a friendly email for users to create strong passwords. It almost sounds … Continue reading

Posted in Security Blog | Tagged , , , , | Comments Off on I Just Want to Be Safe, I’m A ToysЯUs Kid!

Netflix Phishing

Badguys are hitting up customers in Great Britain with phishing campaigns for the popular Netflix service. They are using a similar domain name called Netfixx, hoping people don’t catch the URL. The form asks for name and card numbers. The … Continue reading

Posted in Security Blog | Tagged , , , , | Comments Off on Netflix Phishing

50,000 Names and Driver’s Licenses Disclosed in Uber Hack

According to Reuters, the ride company, Uber, was breached and around 50,000 names and driver’s licenses of current and former employees was disclosed. The breach happened in May of 2014 but wasn’t discovered until September 2014. Uber also filed a … Continue reading

Posted in Security Blog | Tagged , , , , | Comments Off on 50,000 Names and Driver’s Licenses Disclosed in Uber Hack