The TeamSHATTER blog is now part of Spiderlabs – Anterior
The TeamSHATTER blog is now part of Spiderlabs – Anterior
Posted 3 years ago

Many of you are probably already aware of the acquisition of Application Security, Inc. by Trustwave. As part of the acquisition, we are pleased to announce that TeamSHATTER is combining…

TeamSHATTER’s Analysis of the October 2013 Oracle CPU
TeamSHATTER’s Analysis of the October 2013 Oracle CPU
Posted 3 years ago

It’s the second Tuesday in October, so it is Oracle Critical Patch Update (CPU) time. The October 2013 CPU contains 127 fixes across Oracle’s Database, Fusion Middleware, Enterprise Manager, E-Business…

TeamSHATTER’s Analysis of the July 2013 Oracle CPU
TeamSHATTER’s Analysis of the July 2013 Oracle CPU
Posted 4 years ago

It is Oracle Critical Patch Update (CPU) time, so lace up your patching gloves. The July 2013 CPU contains 89 fixes across Oracle’s Database, Fusion Middleware, Hyperion, Enterprise Manager, E-Business…

PreviousNext
RSS

Nationwide Insurance Suffers Data Breach, At Least 28,000 Affected

data

Nationwide may not be on your side, at least when it comes to press containment and incident response. According to a letter from the insurance company recently delivered to customers, the firm is cleaning up after a nasty data breach. However, they’re not disclosing the full scale and scope of the breach itself in order to prevent panic, a Nationwide Mutual spokesperson has stated. In a letter sent to clients, confirmed by state officials in California and Georgia, it was…

Click for complete article >>

Cybersecurity Legislation Stalled By U.S. Senate

senate

The comprehensive cybersecurity legislation has stalled again in the United States Senate, effectively killing the bill for the rest of the year. Will the president issue an executive order to protect the nation’s critical infrastructure from cyber-attacks? On Wednesday, the Senate voted 51-47 to end debate on the bill and move to a final vote. However, the bill needed 60 votes to break the filibuster and move forward. The proposed bill failed a similar vote back in August. Click for…

Click for complete article >>

Irish Regulators Investigate Experian U.S. Data Breaches

Posted November 19, 2012 by in Data Breach, Database Security with 0 comments
148493241

Experian Plc, the credit-reporting giant with financial information on more than 740 million consumers, is being investigated by Irish regulators in the wake of a series of breaches of the company’s databases. The Office of the Data Protection Commissioner, which enforces privacy laws in Ireland, has opened a preliminary inquiry into the security practices of Dublin-based Experian, said Gary Davis, the agency’s deputy commissioner. The move was prompted by an Oct. 29 story on Bloomberg.com’s Tech Blog showing that Experian’s database…

Click for complete article >>

Adobe Confirms Database Breach, Hacker Used SQL Injection As Attack Method

118103964 (1)

Adobe today confirmed that one of its databases has been breached by a hacker and that it had temporarily taken offline the affected Connectusers.com website. The attacker who claimed responsibility for the attack, meanwhile, told Dark Reading that he used a SQL injection exploit in the breach. Adobe’s confirmation of the breach came in response to a Pastebin post yesterday by the self-proclaimed Egyptian hacker who goes by “ViruS_HimA.” He says he hacked into an Adobe server and dumped a…

Click for complete article >>

Skype Suffers Security Breach And Disables Password Reset Capabilities

Posted November 14, 2012 by in Data Breach, Database Security with 0 comments
pw

Skype, a tool that roughly 250 million users rely on for cheap, seamless international audio and video calling, has suffered a security breach that could allow anyone to change a user’s password and take over their account. According to reports, the simple hack can be executed as long as the intruder knows the user’s account name and associated email address. Click for complete article >>

Click for complete article >>

Customers Are Suing Gaming Giant, Blizzard Entertainment, Over Data Breach

Posted November 12, 2012 by in Data Breach, Database Security, Gaming with 0 comments
78431709

A group of customers is suing gaming giant Blizzard Entertainment in connection with a data breach in August that resulted in user email addresses, hashed passwords and other information being stolen by attackers. The suit claims that the company did not do enough to secure users’ accounts before the compromise and that the company now is forcing users to pay for a two-factor authentication system to increase the security on their accounts. The data breach was discovered in early August…

Click for complete article >>

A Look At The Top 4 Long-Term Data Breaches Of 2012

chain

So far, 2012 has been the year for skeletons falling out of the IT security closet. The headlines have been hopping with stories of companies whose networks and databases were thoroughly owned by hackers for months and years at a time, often undetected until government agents came to let them know they’d been compromised and had been for a while. Many organizations go to great lengths to keep news of these kinds of breaches under wraps if no regulated PII…

Click for complete article >>

South Carolina Department Of Revenue Databases Breached Via Two Different Paths

maze

The hacker who reportedly accessed millions of South Carolina tax returns apparently breached state databases via two different paths, according to an official with an information-security firm hired by the state. Marshall Heilman of Mandiant said the attacker tricked a user in the Department of Revenue’s system into opening a file that then allowed the hacker to access the system, according to a report Wednesday from the Post and Courier of Charleston. Click for complete article >>

Click for complete article >>

Coca-Cola Co. Computer Systems Hacked, But Organization Never Publicly Disclosed Loss Of Sensitive Information

confidential

FBI officials quietly approached executives at Coca-Cola Co. (KO) on March 15, 2009, with some startling news. Hackers had broken into the company’s computer systems and were pilfering sensitive files about its attempted $2.4 billion acquisition of China Huiyuan Juice Group (1886), according to three people familiar with the situation and an internal company document detailing the cyber intrusion. The Huiyuan deal, which collapsed three days later, would have been the largest foreign takeover of a Chinese company at the…

Click for complete article >>

Cornell University Breach Exposes Data To Public For Five Days

cornell

The personal information of up to 2,000 people was exposed to the public for five days on a computer in Cornell’s athletics department, a University administrator confirmed Thursday. Donald Sevey, director of information systems, said that the University discovered that a file server containing “confidential data” about thousands of people was accessible by the public for a period of time. He said that he does not know if anyone maliciously used the data while it was exposed. Click for complete…

Click for complete article >>
Powered by