Archive

Posts Tagged ‘Intrusion’

Linux Foundation, Linux.com Sites Down To Fix Security Breach

September 11th, 2011 09:31 admin View Comments

Open Source

An anonymous reader writes “All Linux Foundation sites seem to be down due to a security breach, which occured on 8 sep. (according to a notice displayed on the site).” From the email I received this morning, sent to all Linux.com and LinuxFoundation.org users: “On September 8, 2011, we discovered a security breach that may have compromised your username, password, email address and other information you have given to us. We believe this breach was connected to the intrusion on kernel.org. As with any intrusion and as a matter of caution, you should consider the passwords and SSH keys that you have used on these sites compromised. … We have taken all Linux Foundation servers offline to do complete re-installs. Linux Foundation services will be put back up as they become available. We are working around the clock to expedite this process and are working with authorities in the United States and in Europe to assist with the investigation.”

Source: Linux Foundation, Linux.com Sites Down To Fix Security Breach

Diginotar Responds To Rogue Certificate Problem

August 30th, 2011 08:38 admin View Comments

The Internet

An anonymous reader writes “Vasco, the owner of the DigiNotar CA implicated in the MITM attacks on Iranian Google users has responded to their fraudulently issued certificate problems. The press release reads: ‘On July 19th 2011, DigiNotar detected an intrusion into its Certificate Authority (CA) infrastructure, which resulted in the fraudulent issuance of public key certificate requests for a number of domains, including Google.com. Once it detected the intrusion, DigiNotar has acted in accordance with all relevant rules and procedures. At that time, an external security audit concluded that all fraudulently issued certificates were revoked. Recently, it was discovered that at least one fraudulent certificate had not been revoked at the time. After being notified by Dutch government organization Govcert, DigiNotar took immediate action and revoked the fraudulent certificate’. It is not clear whether the latter certificate is the one used in Iran, or whether other certificates remain at large. I guess removing the root certificate from browsers is the correct response.”

Source: Diginotar Responds To Rogue Certificate Problem

ADP Experiences Security Breach

June 16th, 2011 06:08 admin View Comments

Security

wiredmikey writes “HR and Payroll outsourcing giant Automatic Data Processing, Inc. (ADP) experienced a system intrusion, the company announced Wednesday. ADP said it was investigating and taking measures to address the impact of a system intrusion that occurred with a client at Workscape, a benefits administration provider that ADP acquired in August 2010. ADP has also been actively cooperating with law enforcement to determine the cause of this incident and to assist authorities in identifying and apprehending those responsible. ADP added the following in a statement: ‘Because this incident is the subject of an ongoing law enforcement investigation, ADP cannot disclose any additional details at this time. ADP will provide further updates once information that can be made public becomes available, and we will continue to communicate with all affected parties as appropriate.’”

Source: ADP Experiences Security Breach

77 Million Accounts Stolen From Playstation Network

April 27th, 2011 04:59 admin View Comments

Sony

Runaway1956 was one of many users to continue to update us about the intrusion we’ve been following this week. “Sony is warning its millions of PlayStation Network users to watch out for identity-theft scams after hackers breached its security and plundered the user names, passwords, addresses, birth dates, and other information used to register accounts. Sony’s stunning admission came six days after the PlayStation Network was taken down following what the company described as an ‘external intrusion’. The stolen information may also include payment-card data, purchase history, billing addresses, and security answers used to change passwords, Sony said on Tuesday. The company plans to keep the hacked system offline for the time being, and to restore services gradually. The advisory also applies to users of Sony’s related Qriocity network.”

Source: 77 Million Accounts Stolen From Playstation Network

Sony Blames ‘External Intrusion’ For Lengthy PSN Outage

April 23rd, 2011 04:45 admin View Comments

PlayStation (Games)

Several readers have noted that outages on Sony’s PlayStation Network have prevented online play for the past few days. The company has now blamed an ‘external intrusion’ for the trouble, saying they took down the network to “conduct a thorough investigation and to verify the smooth and secure operation of our network services going forward.” Some suspect an attack by Anonymous, who declared war on Sony earlier this month, but Anonymous has disavowed knowledge of such an attack. Meanwhile, others are asking whether Sony should compensate users for the inability to play PS3 multiplayer modes, and even single-player modes on a few downloadable games.

Source: Sony Blames ‘External Intrusion’ For Lengthy PSN Outage

RSA’s Servers Hacked

March 17th, 2011 03:49 admin View Comments

Crime

Khopesh writes “EMC subsidiary RSA was the victim of ‘an extremely sophisticated cyber attack‘ which resulted in the possible theft of the two-factor code used by their SecurID products.” The Boston Herald has a short article on the intrusion. Update: 03/17 23:54 GMT by T : Reader rmogull adds “With all the hype that’s sure the explode over this one, we decided to do a quick write-up to separate fact from speculation.”

Source: RSA’s Servers Hacked

Chinese Hackers Strike Energy Companies

February 10th, 2011 02:48 admin View Comments

Security

angry tapir writes “Chinese hackers working regular business hours shifts stole sensitive intellectual property from energy companies for as long as four years using relatively unsophisticated intrusion methods in an operation dubbed ‘Night Dragon,’ according to a new report from security vendor McAfee.” Reader IT.luddite links this informative PDF from CERT.

Source: Chinese Hackers Strike Energy Companies

New Open Source Intrusion Detector Suricata Released

December 31st, 2009 12:42 admin View Comments

richrumble writes “The OISF has released the beta version of the Suricata IDS/IPS engine: The Suricata Engine is an Open Source Next Generation Intrusion Detection and Prevention Engine. This engine is not intended to just replace or emulate the existing tools in the industry, but will bring new ideas and technologies to the field. This new Engine supports Mult-Threading, Automatic Protocol Detection (IP, TCP, UDP, ICMP, HTTP, TLS, FTP and SMB! ), Gzip Decompression, Fast IP Matching and coming soon hardware acceleration on CUDA and OpenCL GPU cards.”

Source: New Open Source Intrusion Detector Suricata Released

YOYOYOOYOYOYO