The Hartford, Hacked

Hackers reportedly broke into and installed password-stealing programs on a number of servers belonging to insurance giant The Hartford, according to a ComputerWorld report.The 200-year-old, 28,000 employee strong company sent a letter of warning to some 300 employees, contractors and a small number of customers.

The HartfordHackers reportedly broke into and installed password-stealing programs on a number of servers belonging to insurance giant The Hartford, according to a ComputerWorld report.

The 200-year-old, 28,000 employee strong company sent a letter of warning to some 300 employees, contractors and a small number of customers.

“It was a very small incident,” said company spokesperson, Debora Raymond concerning the breach that allegedly affected less than 10 customers.

The piece of malware believed to have delivered this attack was the W32-Qakbot Trojan. Of the many servers it targeted, some were Citrix servers which employees use for remote access to IT systems. The Qakbot has been around since 2009 according to Symantec. It installs itself on a server, covering its tracks as it goes and opening backdoors that hackers later use to access the network.

The report claims that the attack took place between Feb. 22 and 28 and only affects individuals that logged into one of the infected servers between those dates.

According to the letter sent from company attorney Debra Hampson, the company admits that personally identifiable information could have been captured, but contends that there is no reason to believe that any of this data has been or will be misused.

Despite this, in a move that has become commonplace as far as data breaches go, the company has offered to pay for two years of credit monitoring for all those affected.

Suggested articles

What the New OWASP Top 10 Changes Mean to You?

The OWASP top 10 list of critical security risks will have a big impact on how businesses address application security moving forward. The changes to the list will require businesses to reevaluate their application security posture holistically. Learn more about the most significant changes that have emerged and how businesses can address them.

API Shadow

Bring Your APIs Out of the Shadows to Protect Your Business

APIs are immensely more complex to secure. Shadow APIs—those unknown or forgotten API endpoints that escape the attention and protection of IT¬—present a real risk to your business. Learn how to identify shadow APIs and take control of them before attackers do.