BOSTON, Oct 14 (Reuters) – Three Google Inc
researchers have uncovered a security bug in widely used web
encryption technology that they say could allow hackers to take
over accounts for email, banking and other services in what they
have dubbed a “Poodle” attack.
The discovery of “Poodle,” which stands for Padding Oracle
On Downloaded Legacy Encryption, prompted makers of web browsers
and server software to advise users on Tuesday to disable use of
the source of the security bug: an 18-year old encryption
standard known as SSL 3.0.
BOSTON (Reuters) – Russian hackers exploited a bug in Microsoft Windows and other software to spy on computers used by NATO, the European Union, Ukraine and companies in the energy and telecommunications sectors, according to cyber intelligence firm iSight Partners.
ISight said it did not know what data had been found by the hackers, though it suspected they were seeking information on the Ukraine crisis, as well as diplomatic, energy and telecom issues, based on the targets and the contents of phishing emails used to infect computers with tainted files.
By Jim Finkle and Yashaswini Swamynathan
(Reuters) – Retailer Sears Holdings Corp said the payment data systems at its Kmart stores had been compromised, the latest in a series of computer security breaches to hit U.S. companies in recent months.
The U.S. Secret Service confirmed it was investigating the breach, which occurred in September and compromised the systems of Kmart, which has about 1,200 stores across the United States. The breach did not affect the Sears department store chain.
Symantec finally ends troubled marriage with Veritas, announces split into two public companies: security and information management.
BOSTON, Oct 3 (Reuters) – Two U.S. states are investigating
the theft of 83 million customer records from JPMorgan Chase &
Co in a massive cyberattack uncovered over the summer
and more may soon join, Reuters learned on Friday.
The Illinois state attorney general’s office said it has
launched a probe into the hack on the No. 1 U.S. bank by assets.
Connecticut is also investigating, said a person familiar with
the matter who was not authorized to publicly discuss the probe.
BOSTON (Reuters) – The 83 million customer records that hackers stole from JPMorgan Chase & Co (JPM.N: Quote, Profile, Research, Stock Buzz) could fuel years of fraud, as criminals use the information to “phish” for customer passwords and ferret out other accounts that consumers may have, cybercrime researchers said on Friday.
The No. 1 U.S. bank by assets said on Thursday in a regulatory filing that customer names, addresses, phone numbers and email addresses were taken in the attack that the bank said surfaced in August. It added that it was continuing to investigate the matter and that customers would not be liable for any unauthorized transactions that were promptly reported to the bank.