A US-CERT advisory describes the malware used in the destructive Sony hack, including indicators of compromise and command and control server IP addresses.
Browsing Category: Data Breaches
The FBI has officially stated that North Korea is in fact responsible for the recent cyberattack targeting Sony Pictures Entertainment.
Sony Pictures Entertainment has sent a letter to employees warning them that, along with huge amounts of corporate and employee information, some personal health data belonging to SPE employees may also have been compromised in the attack that hit the company in late November.
Researchers at Dell SecureWorks have looked at services and pricing available inside illegal online marketplaces selling crimeware, stolen identities, credit cards, and hacking services.
Dennis Fisher and Mike Mimoso talk about the details of the Sony breach, including the question of attribution, Sony’s response to the attack, media outlets publishing the stolen data and the rise of destructive malware attacks.
Payment gateway and mobile payment app provider CHARGE Anywhere disclosed it had been breached and hackers had access to plain text payment card transaction authorization requests.
A Minnesota District Court ruling this week related to the 2013 Target data breach has opened the door for banks to pursue damages from retailers victimized by a data breach.
As expected, the Sony breach has apparently unearthed more than just unreleased movies: A slew of sensitive employee information is now making the rounds online.
Avivah Litan of Gartner explains how context aware behavioral analytics may have prevented recent retail breaches and the Snowden, NSA surveillance saga.
SP+, a parking facilities management company, reported that it had been breached and hackers used malware to access payment card data.