The FBI sent a warning to companies yesterday, telling them that “these state-sponsored hackers are exceedingly stealthy and agile” and have used customized malicious code that was undetected by security researchers and law enforcement. More...
JPMorgan, the largest U.S. bank, outlined the scope of the previously disclosed breach yesterday, reassuring clients there’s still no evidence account numbers and passwords were compromised, even as names and contact data were exposed. People who logged on to certain websites or mobile apps had contact information stolen, the New York-based company said.
The bank has been struggling to head off damage since the incident, first reported by Bloomberg News in August. New details on how attackers accomplished the feat over months, including their initial entry, were provided by two people briefed on the investigation, who requested anonymity because it’s private. JPMorgan said the threat now is phishing, in which criminals try to trick people into handing over more valuable data, such as user IDs and passwords. More...
Such a correlation is a "smoking gun," Lucas Zaichkowsky, enterprise defense architect at AccessData, a digital forensics and security services firm, said in an e-mail interview. Whether Home Depot has been breached is no longer a question, he said.
"The bigger question is why Home Depot didn’t detect the attackers as they maneuvered from their initial entry point past multiple layers of defense, performing internal reconnaissance and escalating privileges in the process," Zaichkowsky said. More...
- FBI Warns Tech Companies of State-Sponsored China Hackers
- JPMorgan Password Leads Hackers to 76 Million Households
- Tech, equipment makers join U.S. 'net neutrality' debate
- Home Depot breach a near certainty, yet Backoff remains a question
- Data breach at UPS Stores in 24 states
- Hospital network hacked, 4.5 million records stolen
- With 1 million comments, U.S. net neutrality debate nears first marker
- U.S. web companies press demands for net neutrality with FCC
- German government cancels Verizon contract in wake of U.S. spying row
- Cyberattack Insurance a Challenge for Business