Browsing Category: Social Engineering

Qchex’s Fraud-Enabling Biz Gets FTC Smackdown

[img_assist|nid=1870|title=|desc=|link=none|align=right|width=115|height=115]The Federal Trade Commission has charged those behind the shady online
check service Qchex with contempt, and wants daily fines imposed on
them until they give up the ghost. The group has launched a new site—a
Qchex clone—with the same questionable policies that made Qchex a
“dinner bell for fraudsters.” This has left the FTC fuming, and it
wants the site’s operators to quit helping criminals rip people off—now. Read the full article. [Ars Technica] Read the FTC complaint. 

Read more...

HealthNet Data Breach Affects 1.5 Mil Customers

[img_assist|nid=1848|title=|desc=|link=none|align=right|width=115|height=115]Health Net Inc. announced Wednesday that it is investigating a
healthcare data security breach that resulted in the loss of patient
data, affecting 1.5 million customers. The healthcare provider
said the lost files, a mixture of medical data, Social Security numbers
and other personally identifiable information, were collected over the
past seven years and contained on a portable external hard drive. The company said the healthcare data was not
encrypted, but was formatted as images and required a specific software
application to be viewed. Read the full article. [TechTarget]

Read more...

Researcher: IT Should Secure Social Networks Like Email

[img_assist|nid=1849|title=|desc=|link=none|align=left|width=115|height=115]If the multibillion-dollar e-mail security industry has been built to
prevent information from seeping out through personal communication,
how is social networking in the workplace still going unchecked? After
all, consumer social apps such as Facebook and Twitter provide the same
information-leakage threat as unsecured, personal e-mail–possibly
more, thanks to the viral impact of broadcasting news tidbits to one’s
network of friends in real-time. Read the full article. [Forbes]

Read more...

UK Police Arrest 2 in Zbot Plot

[img_assist|nid=1837|title=|desc=|link=none|align=right|width=115|height=115]Authorities in the U.K. have arrested two people in connection with using a notorious Trojan in a scheme to steal online banking information. The man and the woman, both 20, were arrested by the Metropolitan Police Service in Manchester, according to police. The duo is accused of using the Zeus Trojan, also known as Zbot, in a plot to steal information. It is believed the Trojan was configured to record victim’s online bank account information and passwords, as well as credit card numbers and other information. Read the full article. [eWEEK]

Read more...

NSA to Senate: ’3 Steps Should Thwart 80% of Attacks’

[img_assist|nid=1830|title=|desc=|link=none|align=left|width=115|height=115]Computer systems with proper security and network controls should be able to withstand about 80 percent of known cyberattacks, according to a senior National Security Agency official. Richard Schaeffer Jr., the NSA’s information assurance director, told the Senate Judiciary Committee’s Terrorism and Homeland Security Subcommittee that three measures in particular are especially effective: “Best practices, proper configurations [and] good network monitoring.” Read the full article. [Government Computer News]

Read more...

New Mac Phishing Attack

[img_assist|nid=1829|title=|desc=|link=none|align=right|width=115|height=115]An email which purports to
relate to a recent Apple retail transaction and asks for details of any
recent orders is out there. The email also carries a stuffed file.
This contains an ‘exe’ file which will only launch on a Windows machine. The email reads: “We recorded a payment request from ‘Apple Inc.’ to
enable the charge of $7,548.45 on your account.” Read the full article. [9to5Mac]

Read more...

Privacy Concerns Raised About Smart Grids

[img_assist|nid=1831|title=|desc=|link=none|align=left|width=115|height=115]Technologists already are worried about the security implications of linking nearly all elements of the U.S. power grid to the public Internet. Now, privacy experts are warning that the so-called “smart grid” efforts could usher in a new class of concerns, as utilities begin collecting more granular data about consumers’ daily power consumption. Read the full article. [Washington Post]

Read more...

MassMutual Employee DB Hacked

[img_assist|nid=1819|title=|desc=|link=none|align=left|width=115|height=115]MassMutual officials this week confirmed that one of its employee
databases was accessed by an unauthorized person or persons, exposing
an unknown number of employees’ personal data for a
yet-to-be-determined amount of time. The Springfield, Mass.-based insurer said the compromised
database was being maintained by an unidentified, third-party vendor
and contained “a limited amount of personal employee data.” Read the full article. [internetnews.com]

Read more...

Connecticut Investigates Blue Cross Blue Shield Data Breach

[img_assist|nid=1802|title=|desc=|link=none|align=right|width=115|height=115]Connecticut Attorney General Richard
Blumenthal is investigating Blue Cross Blue Shield’s loss of
confidential information, including tax identification and Social
Security numbers, for 800,000 healthcare providers nationwide. The attorney general is also seeking additional identity theft
protection for affected doctors, therapists, and other professionals,
according to a statement from the attorney general issued. The companies lost the information when a laptop was stolen Aug. 25. Read the full article. [Dark Reading]

Read more...

An Inside Look at Botnet Chasers

[img_assist|nid=1790|title=|desc=|link=none|align=right|width=115|height=115]They’re the Internet equivalent of storm chasers, spending endless hours scanning and sleuthing, looking for the telltale signs of botnets. Here’s an inside look at the battle against cybercrime’s weapons of mass infection. Read the full article. [CSOonline.com]

Read more...