breach
Name.com suffers breach, credit card data accessed, encryption in place (phew!)
Domain registrar and web hosting company Name.com, part of the Demand Media group, has suffered a data breach.
Crooks have apparently made off with data up to and including credit card numbers...but it sounds as though everything was encrypted, which is a silver lining.
Reputation.com resets all user passwords following breach
Fortunately, the few passwords that were nabbed were salted and hashed. Also, the company doesn't request sensitive information such as Social Security Numbers and doesn't store financial data such as credit card numbers or bank accounts.
Kudos for good security practices, guys.
Facebook owns up - admits network breached, blames "Java in the browser"
In The Social Network, the movie version of Zuckerberg could shout, "WE NEVER CRASH!"
I bet the real-life Zuckerberg wishes he could say, "We never get hacked..."
US Federal Reserve confirms it was hacked during the Super Bowl
An internal Federal Reserve site was hacked on Sunday. The personal details on 4,000 US bankers were exposed.
Malware found sucking up data on new Japanese space agency rocket
Malware discovered on a Japanese space agency desktop computer has been stealing data on Epsilon - a new, AI-enabled rocket - and beaming it to controllers outside the agency. It's only the latest in a string of data-siphoning incidents that's plagued the agency.
Goatse hacker Auernheimer found guilty of breaching AT&T to access customer iPad data
A hacker claims he was disclosing a security flaw responsibly.
But IRC transcripts show that the Goatse hacking group was instead musing about shorting AT&T stock, discussed selling 120,000 email addresses to spammers, and never told AT&T about the vulnerability in the first place.
NASA suffers major data breach over stolen laptop that wasn't encrypted
The space agency is now, finally, after yet another unencrypted laptop theft, scrambling to require full disk encryption agency-wide.
Cracked passwords from the alleged 'Egyptian hacker' Adobe breach
An allegedly Egyptian hacker going by the name ViruS_HimA has allegedly hacked into Adobe.
Wherever the data actually comes from, it reveals yet more poor password hygiene at both the client and the server...find out just how bad.
Attacker grabs data for 3.6 million South Carolina taxpayers; governor wants to see culprit "brutalized"
She's got a right to be incensed, with 77% of the state's population's Social Security numbers being snatched out from under the Department of Revenue. But what's the appropriate penalty for the department, for the crime of leaving the data unprotected?
How a single spam from China ended up as an attack on the White House
FoxNews leads today with a story entitled "Washington confirms Chinese hack attack on White House computer."
It sounds very dramatic, but which computer? What attack? Where in China? Find out the story behind the story.
Philips hacked, plaintext passwords revealed as R00tbeer gang strikes again
R00tbeer is back, we're sorry to say. This time the victim is Dutch technology giant Philips.
Paul Ducklin looks at some of the mistakes made by Philips, cracks some of the stolen hashes to remind you about password choice, and keeps us mindful of the real offenders here.
Dropbox data breach proves the "One Site, One Password" rule
A couple of weeks ago, Dropbox users started noticing an upturn in spam to email addresses they'd only ever used for Dropbox.
Understandably, they wanted to know, "Why?"
BlackHat conference in giant phishing gaffe
The annual BlackHat conference in Las Vegas prides itself as "the best and biggest event of its kind, unique in its ability to define tomorrow's information security landscape."
That may well be. But this year's event has kicked off with a giant security boo-boo.
Intruder compromises user database for Star Trek Online and other MMORPGs
The studio behind Star Trek Online, City of Heroes, City of Villains, and Champions Online suffered a user account database breach 16 months ago... and is only warning users about it now.
Games developer Rockyou fined $250K for not securely storing customer data
Rockyou were fined by the FTC for storing customer data in plain text. 32 million login details were stolen and published on the web. What can the rest of us learn from this?
Symantec source code breach saga continues
The wrangle between Indian cybercrew The Lords of Dhamaraja and Symantec over a source code breach in 2006 continues.
Whatever happened, the fact remains: this was a cybercrime and the "hackers" are the crooks.
Telstra Bigpond users targeted in post-data-breach phishing campaign
A phishing campaign targeting users of Telstra Bigpond, Australia's largest ISP, is urging users to confirm their billing information or risk suspension.
All pretty run-of-the-mill, but neatly timed given that Telstra suffered a data breach of customer information last Friday.
Bundestrojaner, Sony breach, Duqu, OS X anti-anti-virus, MS hack - 60 Sec Security
Enjoy the latest security news in brief by watching 60 Second Security!
This episode: the German Bundestrojaner controversy, Sony breached (again!), Duqu dubbed "Son of Stuxnet", OS X anti-anti-virus and Microsoft videos hacked.
BitTorrent serves malware directly from website - no need for P2P!
Oops!
Even if you are one of the several many entirely law-abiding users of BitTorrent, the mothership company Bittorrent, Inc. may recently have put you in harm's way.
Security breach: Kernel.org and Linux Foundation remain "temporarily unavailable"
The Linux world is in a bit of a security spinout at the moment.
Could this be the moment that you finally decide to try OpenBSD?
![Password security infomerical leaves Ellen DeGeneres in disbelief.. and it will you too [VIDEO]](http://sophosnews.files.wordpress.com/2013/04/ellen-thumb.jpg?w=75&h=75&crop=1)
![Can multiple moving cursors really hide your password from spyware and peepers? [VIDEO]](http://sophosnews.files.wordpress.com/2013/03/cursors-thumb.jpg?w=75&h=75&crop=1)
