Tag: username

New Mass SQL Injection Making Rounds, Creates Yellow Pages of Vulnerable WebsitesTeam Shatter Exclusive

Posted October 27, 2011 by Alex Rothacker in Attack Vectors, Best Practices, Data Breach, Database Security, Team Shatter Exclusive with 0 comments
SQL Injection

Again a mass SQL injection attack is making its rounds on the web – this one called jjghui referring to the website it redirects traffic to. As Armorize reported, this is yet another play on using SQL injection to inject malicious JavaScript in ASP.NET websites. So far, a Google search shows 180,000 pages have already been infiltrated by this attack. This attack seems to be targeting smaller sites that lack personnel with the skills and security awareness of larger and…

Click for complete article >>

Largest Hack in Swedish History Affects Politicians, Journalists Among Others

Posted October 27, 2011 by TeamSHATTER Admin in Attack Vectors, Data Breach, Database Security, Media, Technology with 0 comments
largest swedish hack breach

Login credentials for nearly 200,000 individuals, most Swedish citizens, have been exposed in what experts are calling the largest data breach in that country’s history. According to a report from The Local, a Sweden-based, English language news publication, a popular Swedish blogging platform, Bloggtoppen, was hacked with login information for around 60 Web sites hosted on that platform – an estimated 90,000 account passwords – made public via the twitter account of a 23 year-old Swedish Parliamentarian, William Petzail. Petzail,…

Click for complete article >>

Kiplinger Database Hack Compromises 142,000 Customer Accounts

Posted July 12, 2011 by TeamSHATTER Admin in Data Breach, Database Security, Media with 0 comments
Kiplinger hacked

Kiplinger Washington Editors, publisher of the popular Kiplinger newsletters, has revealed a security breach that might have exposed the personal information of some 142,000 of its subscribers. “On June 25, 2011, we discovered a hacker attack on our database that resulted in an unidentified third party gaining unauthorized access to our customer information,” the publisher said in a online statement. “We took immediate steps to stop the attack and prevent further breaches, and we have notified our affected customers and…

Click for complete article >>

Hackers Take Bite Out Of Apple Website

Posted July 5, 2011 by TeamSHATTER Admin in Data Breach, Database Security, Hacker News, Technology with 0 comments
apple hack breach

A list of 27 user names and encrypted passwords apparently for an Apple website was posted to the Internet over the weekend along with a warning from hacker group Anonymous that the Cupertino-based computer maker could be a target of its attacks. The list was posted to the Pastebin website, a hosting site for text files, by an unidentified user under the title “Not Yet Serious.” It wasn’t immediately clear if the user was allied with the Anonymous hacking group,…

Click for complete article >>

Cyberattack Hits Canadian Supermarket, T&T

Posted June 24, 2011 by TeamSHATTER Admin in Data Breach, Database Security, Retail with 0 comments
T&T hacked

The website of Loblaw subsidiary T & T Supermarket Inc. was hit by a cyberattack that may have exposed the personal data of 58,000 people. Website visitors may also have been tricked into downloading malicious software onto their computers, the Richmond, B.C.-based Asian grocery chain said in a news release Friday. The personal data that may have been stolen includes usernames, passwords, names and contact details. It does not include credit card information, birthdates or social insurance numbers, as those…

Click for complete article >>

Video Game Co., Bethesda Softworks’ Hacked – Compromises User Names, Email Addresses, and Passwords

Posted June 13, 2011 by TeamSHATTER Admin in Data Breach, Database Security, Technology with 0 comments
Bethesda Softworks Hacked

Fallout and Elder Scrolls publisher Bethesda Softworks is warning users of its forums and websites of an “unlawful intrusion” by a hacker group. According to a post on Bethesda’s official blog, the hackers may have gained access to some user names, email addresses and passwords. “As a precaution, we recommend that all our fans immediately change passwords on all our sites,” reads the statement. Bethesda also suggests users watch for suspicious emails and account activity. The publisher says no personal…

Click for complete article >>

Oracle’s MySQL.com Hacked With SQL InjectionTeam Shatter Exclusive

Posted March 28, 2011 by Alex Rothacker in Data Breach, Database Security, Team Shatter Exclusive with 0 comments

Over the weekend, Oracle’s Website MySQL.com was attacked with a SQL injection that allowed the Romanian hackers dubbed “TinKode” and “NeOh” to post a list of usernames and passwords online. The Website was compromised by exploiting a vulnerability in the Website that allowed the attackers to get access to the schema and content of the MySQL databases backing the site. Usernames and password hashes were amongst the stolen data. This is one of the many breaches I’ve seen lately where…

Click for complete article >>

Securing Java Applications with Smart Cards and Single-Sign-OnTeam Shatter Exclusive

Posted November 2, 2010 by TeamSHATTER Admin in Best Practices, Government (Federal), Team Shatter Exclusive with 0 comments

I recently visited a large U.S. government agency that has been rolling out a number of security initiatives over the last few years. The organization has been an AppSecInc customer for quite sometime and is currently fully deployed with DbProtect, scanning and monitoring hundreds of databases. They take security seriously and continue reducing their risks with various enterprise-wide activities, one small step at a time. This is my favorite kind of progress, where patience and grit always pays off in the long run.

Click for complete article >>
Powered by