Log in

Archive for the ‘Hackers’ category

Stratfor site relaunched – Story continues

January 15th, 2012

Stratfor relaunches site post hack attack

Stratfor is officially back but its servers are heavily burdened due to its offer of free access. Stratfor CEO criticized the attackers for targeting the company, an email said. Stratfor aka Strategic Forecasting is back online after it was hacked into last month.

The new site

Stratfor relaunched the new site on Jan. 11 exactly 18 days after the hacking group Anonymous hacked into its servers on Dec. 24. The hackers hacked Stratfor’s servers and took away data related to its subscribers and also defaced the site. The information that was dumped online included 75,000 credit card numbers and 860,000 usernames and passwords. Almost 50,000 of the addresses had a .mil or .gov domain. According to a Stratfor spokesperson there was going to be a delay with the site re-launch. The company planned to bring in a team of consultants and experts to tackle the security issues. The company further decided to move all credit card management activities to a third-party company so that customer data remained secure.

According to George Friedman, CEO of Stratfor “This was our failure,”. “I take responsibility. I deeply regret that this occurred and created hardship for our customers and friends.” “I felt bound to protect our customers, who quickly had to be informed about the compromise of their privacy. I also felt bound to protect the investigation,” Friedman said. The FBI had informed credit card companies of the breach and had provided a list of compromised cards, so “our customers were therefore protected,” he said, adding, “We were not compelled to undermine the investigation.” “This attack was clearly designed to silence us by destroying our records and the website,”.

What went wrong?

Apparently Stratfor had failed to encrypt credit card data and had stored the information in cleartext. After the passwords were analyzed, it was seen that security practices were not followed.There was no check on passwords when they were created by users.

Friedman further added “We were no longer an organization that analyzed the world for the interested public, but rather a group of incompetents, and conversely, the hub of a global conspiracy,”. According to him the media had publicized “incompetents” part while the hacking community focused on the “global conspiracy” part.

Relaunch offer

The site was made free to all visitors for a limited time. But that did not last long as due to heavy traffic on the site, it had to be closed down. ”Due to the high volume of interest in our new website, we are currently encountering a service interruption. We are working with outside experts to increase our capacity to handle the increased traffic to the new website,” according to a message posted at Stratfor.com.

Protect yourself with Alertsec

Organisations are now made aware about their data security and are implementing data encryption techniques. Alertsec uses encryption software to protect data from breaches and theft.

Alertsec Xpress is backed up by Check Point Full Disk Encryption and is used by over 4 million users worldwide, with single deployments exceeding 150,000 laptops and PCs. This is the most deployed software of its kind and is seen as today’s market leader.

No comments »

Posted in Computer security, Data Protection, Encryption, Hackers, Identity and Information loss, computer security software, data breach, data encryption

Tags: anonymous Austin Texas Bank card number Check Point Company Credit card Dec. 24 FBI Federal Bureau of Investigation Friedman George Friedman Hackers Personal computer Stratfor YouTube

Anonymous is back with a bang! This time they breach Stratfor Inc.

January 9th, 2012

Stratfor Inc hacked and credit card data stolen

Anonymous has always been in the news for data hacking and just when we were wondering what they were up to, they are here! This time they have been successful in breaching data of the security Think-Tank Strategic Forecating Inc, based out of Austin.

The details

The group managed to hack into Stratfor’s web site and get data about the company’s corporate subscribers. This resulted in the website being closed down temporarily. Anonymous was proud to announce that they stole passwords, credit card details, and home addresses of about 4,000 people on Stratfor’s private client list. Their plan was to use the credit card information to make fraudulent donations to charities. The hackers described the data on Pastebin, then provided several links to websites hosting the information. According to them some 50,000 of the e-mail addresses released end in “.mil” or “.gov.”

Strangely enough, some representatives of the Anonymous group denied complete responsibility of the attacks. According to an Anonymous spokesman “it does not attack media sources.” The organization has been known for its hacks on Sony’s PlayStation services, the Church of Scientology, as well as companies, banks, and organizations that supported WikiLeaks.

What business is Stratfor into?

The company offers its clients like the U.S. Air Force, the Miami Police Department, and Apple, high-quality economic, political, and even military analysis to clients, delivered daily via email, video, and the Web.

After the hack

Stratfor is offering a free one-year subscription to an identity protection service to those affected. Stratfor’s CEO, George Friedman confirmed on the company’s Facebook page on Monday that the hack disclosed the names of some corporate subscribers along with personal and credit card data.

Barrett Brown, spokesman for Anonymous said “This wealth of data includes correspondence with untold thousands of contacts who have spoken to Stratfor’s employees off the record over more than a decade,”. “Many of those contacts work for major corporations within the intelligence and military contracting sectors, government agencies and other institutions.”

Stratfor’s chief George Friedman’s statement

“While addressing matters related to the breach of Stratfor’s data systems, the company has been made aware of false and misleading communications that have circulated within recent days,” said Friedman. “Specifically, there is a fraudulent email that appears to come from George.Friedman[@]Stratfor.com.”

High profile attacks are making the rounds and security agencies are scrambling to get the security policies of such companies in place. Stratfor’s website is under repair as of today and will take some time before it gets back in shape.

Alertsec equips firms with encryption software

Alertsec is here to take care of our security issues especially for anyone working with PCs. Alertsec Xpress is the service that automatically protects ALL information you store on your PC. The fact that we now buy more laptops than desktops shows that the information we all store is increasingly more vulnerable to be exposed. It is a much higher risk to lose a laptop than a desktop computer.

Encryption is the only secure method for complete protection of data stored on your hard disk. Today laptops are overtaking desktop PCs as the major source of computing and media storage, laptops frequently store an organization’s most valuable information. Thus laptop encryption is becoming more and more important.

Alertsec Xpress offers full disk encryption and is therefore superior to other encryption methods when comparing security, performance, robustness and ease-of-use for both administrators and users.

No comments »

Posted in Computer security, Data Protection, Hackers, Identity and Information loss, computer security software, data breach, data encryption, identity theft

Tags: anonymous Austin Austin Texas Consultants Credit card data Facebook George Friedman Hack Miami Police Department Pastebin security Stratfor United States Air Force Website Wikileaks

Mitsubishi Nuclear and Warplane data compromised

October 31st, 2011

Hackers don’t just hack small accounts like Hospital data or Software data. They get into big stuff like military and warplane data too!

According to Japanese Defense Ministry hackers have most probably accessed sensitive data relating to military aircraft, missiles, and nuclear power plant designs and safety systems.

The news in detail

Mitsubishi Heavy–Japan’s largest defense contractor is best known in America for manufacturing the surface-to-air Patriot missile.–In August it found out that multiple computers were infected with a Trojan application. Further investigation showed that the information had been sent outside the company’s computer network, clearly indicating an outsider’s involvement.

The computers were located in 11 different places. Some were placed in sensitive areas like the Kobe and Nagasaki shipyards that are into submarines and destroyers constructions. A few others were located at the Nagoya facility that manufactures guided missile systems. The nuclear data that was stolen included anti-quake measures.

Mitsubishi Heavy Industries was reluctant to share this info at first. It kept the Japanese authorities in dark stating that its military information was safe and that all security measures were followed. Initially the company said that the attackers were caught early on but later contradicted their own statement saying that data had been compromised.

Statement issued by the company

“The company recently confirmed unintended transferring of some information on the company’s products and technologies between servers within the company,” said Mitsubishi Heavy in a statement. “Based on the finding, the company investigated the incident further and recognized the possibility of some data leakage from the server in question.”

Other recent military data breaches

Lockheed Martin, which manufactures the F-22 Raptor and F-35 Lightning II fighter aircraft, was a victim of military data theft recently. The Lockheed hack was done by using information stolen earlier from RSA Security. RSA is the branch of EMC that produces the SecurID two-factor authentication token used by thousands of contractors and corporations to secure their networks.

What are the Tokyo Police doing about it?

Mitsubishi Heavy has given a complaint to the Tokyo Metropolitan Police Department with details about damage done to its computer system in late September. The police are looking into computer records to find out the source of the data.

Protect your confidential data with Alertsec

Alertsec Xpress offers a customizable data encryption software solution from Checkpoint, the industry leader in encryption software (former Pointsec). Alertsec has come up with a web based encryption service that helps in deployment and management of PC encryption.

The need of a Data encryption software and recovery software is felt by big and small companies in today’s vulnerable data world. The threat could have simply been reduced to an insurance matter by a mere investment of $13/month. Certainly a small price to pay compared to what can happen if you lose confidential or sensitive data. Alertsec Xpress offers a very good and easy-to-use laptop security service that includes more than the traditional software licensing model.

No comments »

Posted in Computer security, Data Protection, Hackers, Identity and Information loss, data breach, data encryption, identity theft

Tags: alertsec AlertSec Xpress checkpoint EMC Encryption Kobe Lockheed Martin Military aircraft Mitsubishi Mitsubishi Heavy Mitsubishi Heavy Industries Nagoya Nuclear power Personal computer security Tokyo Metropolitan Police Department United States

Major setback for the Indie Stone – Laptop with Zomboid code stolen

October 16th, 2011

Laptops stolen from Indie Stone's apartment

The Indie Stone is having bad luck. They are in trouble again. This time their laptops containing valuable code are missing!

When did bad luck start following the Indie Stone team?

In the second week of June developer ‘The Indie Stone’ found out that pirates had developed a version that could update itself. Their exact blog post words “These ‘auto updating’ versions of the game could screw us completely. We have a cloud based distribution model, where the files are copied all over the world and are served to players on request, which means we are charged money for people downloading the game.”

Bad luck again?

The Indie stone’s Newcastle flat has reportedly been burgled. Two laptops along with some other stuff was stolen. The machines contained all of the recent code of Project Zomboid.

What is Project Zomboid?

Project Zomboid is a Zombie Survival RPG. Some of its main features:

Retro-isometric style with plenty of zombie insides thrown in for good measure.
A massive city and the surrounding areas to traverse, explore and loot.
Open-ended sandbox world – survival is your only goal, and we’re sorry to tell you… you WILL die eventually.
Get infected. How will you spend your final days? Will you have a heroic moment of self-sacrifice, or end up chewing your best friend’s throat out?
Meet other survivors who you can join forces with, trade with, undertake missions for, or fight with for resources.
Loot, salvage, and build what you need to survive the apocalypse, from food and medical supplies, to weapons, even just booze to help get you through the nights

Lemme of Indie Stone breaks down

Lemmy, Indie team member, tweeted his anger :

“Two laptops robbed from flat. Last couple of months work on it stupidly backed up on tbe (sic) other.”

“I expect i’ll either get a lot of disbelief or a lot of flak for no regular off site backup. I deserve both”

“We still have code its basically before the last update. Tbis (sic) will probably finish us. Sorry let everyone down”

Will, another Indie team member, gave an official statement:-

I won’t beat around the bush. The Indie Stone have just suffered a major set-back. The Newcastle flat where Lemmy and Binky live and work was burgled this evening, and so far the clearest things taken are two computers and Lemmy’s credit card.

Project Zomboid was regularly backed up from machine to machine, but rarely – sadly and infuriatingly – externally. We have lost an awful lot of work. Mash and Binky don’t even know this has happened yet.

“We are gutted, we are despondent and – most of all – we are sorry that this has thrown yet another bump into the road towards PZ completion. We also REALLY want to wring the neck of the arsehole that did this to us.”

Alertsec suggests Laptop encryption

Tips shared by Alertsec to save your data in case your laptop is stolen:

a. Make sure to always have a fresh back-up on a server or back-up device

b. Use encryption software to enhance the laptop security

Alertsec Xpress offers a very good and easy-to-use laptop security service that includes more than the traditional software licensing model.

No comments »

Posted in Hackers, Identity and Information loss, identity theft, laptop encryption, laptop theft

Tags: Arts Debt Reduction Enter your zip code here History Indie Stone Luck People Personals Requesting Help

Major security breach forces Sony to lock down 93,000 Online Accounts

October 13th, 2011

Another security breach at Sony's

Sony again !

After a very shocking and massive security breach, Sony locked down almost 93,000 user accounts on its online gaming and entertainment networks. A large number of unauthorized attempts were made to access these accounts.

According to Sony, a brief access to 60,000 accounts on the PlayStation Network was gained by the intruders using very large sets of sign-in Ids and passwords, similarly another 33,000 accounts on Sony Online Entertainment’s servers were also accessed by the intruders.

Sony reported through a statement that these intrusions took place from Friday to Monday and affected “less than one-tenth of 1 percent” of PSN, SEN, and SOE consumers. Even though the hackers got success in verifying the sign-in IDs and passwords, the credit card information remained safe and untouched as per the Sony report. The accounts are locked by Sony once it was confirmed that the attacks were unauthorized.

“In this case, given that the data tested against our network consisted of sign-in ID-password pairs, and that the overwhelming majority of the pairs resulted in failed matching attempts, it is likely the data came from another source and not from our Networks,” Sony Chief Information Security Officer Philip Reitinger said on the PlayStation blog.

The attacked accounts also “showed additional activity prior to being locked,” but that information has not been declared. “We are continuing to investigate the extent of unauthorized activity on any of these accounts,” Sony said.

Reitinger indicating about the “additional activity” said, “We will work with any users whom we confirm have had unauthorized purchases made to restore amounts in the PSN/SEN or SOE wallet.”

The affected consumers are receiving e-mails from Sony to inform about the locked status of the account and requesting to reset the password securely.

Sony has been issuing apologies and promising secure network to all the users. Sony, one of the rulers of entertainment industry is trying hard to regain the trust of the customers.

The company is aiming to link all its gadgets to an online cloud-based network of games, movies and music that would integrate all the verticals as well as the customers’ confidence in the company. However, industry experts find such incidents of security breach threatening for Sony’s brand image that may lead to permanent brand damage.

This security attack proves a major setback to the company plans and credibility too and the industry experts are not sure about the aftermath it may cause to the company.

Alertsec protects firms with encryption software

Alertsec is here to take care of our security issues especially for anyone working with PCs. Alertsec Xpress is the service that automatically protects ALL information you store on your PC. The fact that we now buy more laptops than desktops shows that the information we all store is increasingly more vulnerable to be exposed. It is a much higher risk to lose a laptop than a desktop computer.

Encryption is the only secure method for complete protection of data stored on your hard disk. Today laptops are overtaking desktop PCs as the major source of computing and media storage, laptops frequently store an organization’s most valuable information. Thus laptop encryption is becoming more and more important.

Alertsec Xpress offers full disk encryption and is therefore superior to other encryption methods when comparing security, performance, robustness and ease-of-use for both administrators and users