Tag: database security

No Questionable Calls Here: The March Madness Meets Higher Education Data Breach “Brackets” Are Back!Team Shatter Exclusive

Posted March 18, 2013 by TeamSHATTER Admin in Data Breach, Database Security, Education, Team Shatter Exclusive, Uncategorized with 2 comments
march madness

March Madness is here! Yesterday, the NCAA Selection Committee selected 68 teams to participate in this year’s NCAA Division I Men’s Basketball Championship.  While fans across the country are sneaking out of the office to watch games, breaking out the ol’ college sweatshirts, and betting Vegas-style, we are joining the fun for the Third Annual Higher Education Data Breach Madness “Brackets.” Just like in previous years, the data breach madness “bracket” is determined solely by the number of reported breaches…

Click for complete article >>

Three Of The Biggest Credit Reporting Agencies Acknowledge Data Breaches

Posted March 13, 2013 by TeamSHATTER Admin in Attack Vectors, Data Breach, Database Security, Hacker News with 0 comments

The three biggest credit reporting agencies in the U.S. each have reportedly acknowledged intrusions into their systems following the revelation of personal data, including financial information, of celebrities and prominent figures on a website this week. Executives at Equifax, Trans Union and Experian acknowledged the breach to Bloomberg in a report published Tuesday. Tim Klein, a spokesman for Equifax, told the news agency that a hacker gained “fraudulent and unauthorized access” to at least four consumer credit reports at the…

Click for complete article >>

Evernote Hack Affects 50 Million Users

Posted March 7, 2013 by TeamSHATTER Admin in Data Breach, Database Security with 0 comments
blue screen

Tens of millions of online note-takers found themselves worrying about their security Monday, as questions remained about a weekend hack of Evernote. The online note-taking and archiving service began requiring its 50 million users to reset their passwords Saturday after announcing it was the victim of a security breach, making it the latest tech company in recent weeks to fall victim to hackers. Click for complete article >>

Click for complete article >>

Security Experts Urge State Governments To Up Cyber Security Measures

Posted March 1, 2013 by TeamSHATTER Admin in Attack Vectors, Data Breach, Database Security, Government (State), Hacker News with 0 comments
USA Flag2

The email sent to several thousand of state employees in early February looked official. It featured the state logo and a familiar warning that email access was about to be cut off because the employee’s inbox was too full. The email invited employees to click on a link to solve the problem. If an employee clicked, a screen popped up asking for more data, including the employee’s name, login and password. It was a classic spear-fishing exploit with the hacker’s…

Click for complete article >>

Zendesk Hack Exposes Twitter, Pinterest And Tumblr Data

Posted February 21, 2013 by TeamSHATTER Admin in Data Breach, Database Security, Hacker News with 0 comments
social media

Customer service software provider Zendesk announced a security breach that allowed attackers into its system, where they could access data from three customers this week. Wired learned those three clients were Twitter, Pinterest and Tumblr. The San Francisco-based company announced the breach in a blog post published early Thursday night. Tumblr notified affected users in an email at approximately 6:35 p.m. PST; Twitter and Pinterest are expected to do so shortly. Zendesk declined to comment beyond its blog post, titled, appropriately,…

Click for complete article >>

Tips To Granting Database Access Control Permissions

Posted February 13, 2013 by TeamSHATTER Admin in Database Security with 0 comments

Database permissions can cause headaches for even the most sophisticated security organizations. Indeed, many of the most persistent problems with malicious or risky database access start before the database server software is even up and running. Why are database access controls so maddeningly complex? In a word, flexibility — the very flexibility that enables organizations to create multiple and interlocking roles can also create a knot of confusion and vulnerability. Click for complete article >>

Click for complete article >>

Database Insecurity And The Trends Of 2013Team Shatter Exclusive

Posted January 30, 2013 by Josh Shaul in Attack Vectors, Data Breach, Database Security, Team Shatter Exclusive with 0 comments

What is in store for us in 2013? What new threats should organizations be aware of? Are you next to be hacked? Let’s first take a quick look back at the events of 2012. In the past twelve months, the good news is that the hacktivists went away (mostly). However, we saw an increase of 45% over 2011 in the number of breaches disclosed, there were lots of new database vulnerabilities reported and patched, including one with a CVSS 10.0…

Click for complete article >>

TeamSHATTER’s Analysis Of The January 2013 Oracle CPU

Posted January 17, 2013 by Alex Rothacker in Database Security, Oracle with 0 comments

It’s Oracle Critical Patch Update (CPU) Tuesday, so lace up your patching gloves and let’s get started. The January 2013 CPU contains 86 fixes across Oracle’s Database, Access Manager/Webgate, GoldenGate Veridata, Outside In, WebLogic, Application Performance Management, Enterprise Manager, E-Business Suite, Agile PLM Framework, People Soft, JD Edwards EnterpriseOne Tools, Siebel CRM, Sun Product Suite, Virtual Box and MySQL product lines. 45 of the fixes in this CPU are for vulnerabilities that are remotely exploitable without authentication. In other words,…

Click for complete article >>

Cyber Crime Is Growing, Yet Risk Typically Not Covered By Insurance Policies

Posted January 11, 2013 by TeamSHATTER Admin in Data Breach, Database Security with 0 comments
insurance policy

In September, the customer websites of Bank of America,  Wells Fargo, US Bank, J.P. Morgan Chase and PNC were rendered inaccessible for more than a day by the biggest cyberattack in history, now attributed to Iranian government hackers. Weeks before, online vandals breached security at LinkedIn, stealing the passwords of six million people who frequent the popular business-networking site. Whether companies are the victims of state-sponsored invasions or criminal attacks, one of the scariest threats facing businesses today is hacking—and the…

Click for complete article >>

South Carolina Agencies Still Working On Security Improvements

Posted January 7, 2013 by TeamSHATTER Admin in Data Breach, Database Security, Government (State) with 0 comments

Months after a foreign hacker broke into the South Carolina Department of Revenue’s computer system exposing millions of taxpayers’ personal records and causing the state to spend $20 million for added protection, state cabinet agencies are still working on security improvements, an examination by GreenvilleOnline.com show. Just one of South Carolina Gov. Nikki Haley’s 15 cabinet agencies questioned by the website — the Department of Probation, Pardons and Parole — responded without qualifications that it had the full basic protections…

Click for complete article >>
Powered by