Spammers Moving to Social Networks

Its not just Wall Street giants like Goldman Sachs that see dollar signs hovering over Facebook. Spammers are hopping on the social networking giant to fool users, according to a report from security firm Cloudmark. Spammers are using botnets to send a barrage of malicious e-mail spam that mimic e-mails from social networking sites. 

Internal Memo Outlines Gawker’s Security Plan

a hack of systems belonging to online publishing giant Gawker Media that yielded more than one million passwords,
the online media company’s chief technology officer has announced new defense strategies
aimed at placating their users and preventing further
humiliating data breaches.

The hack of blog news network Gawker dominated the headlines this week, leaving behind a trail of spammy Tweets and stolen passwords across the Internet. But Gawker was just one of a handful of data breaches in a week that saw the continuation of the Wikileaks saga and a massive patch release from Microsoft. To get the full rundown, read on for the week in security.

By Jeremiah Grossman, CTO, WhiteHat SecurityEveryone sounded the alarms at the Gawker Media attack, which included a security breach of websites such as Gizmodo, Lifehacker, Kotaku, io9, and others. The numbers were impressive: 1.3 million user accounts exposed, 405 megabytes of source code lost, and perhaps more important to some, the identity of those leaving anonymous comments potentially revealed. For Gawker, there is a loss of trust that will be difficult to regain. Users are already clamoring for the ability to delete their accounts. And, on the technical side, all Gawker’s systems will need to painstakingly audited or rebuilt entirely from scratch to prevent the same thing from happening again. Happy Holidays indeed.

CLARIFICATION: This story corrects information concerning the availability of the stolen account names and passwords online.
Millions of Web users are waking up to news that broke over the weekend that systems belonging to Gawker Media were hacked and password data on millions of user accounts published on the Internet. How can you figure out if your e-mail and password were among more than a million that were stolen? Read on for instructions on figuring out if you’re one of the victims of the Gawker attack, and what to do about it.

A massive hack of systems belonging to online publishing giant Gawker Media has put gigabytes of sensitive information related to Gawker founder Nick Denton and the company’s operations online. But a trove of millions of hashed account passwords could be an even bigger problem for untold numbers of individuals, companies and government agencies.

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.