Correspondent, Boston
Jim's Feed
Mar 6, 2015

U.S. charges three in ring that stole 1 billion email addresses

WASHINGTON/BOSTON (Reuters) – Two Vietnamese citizens and a Canadian have been charged with running a massive cyber fraud ring that stole 1 billion email addresses, then sent spam offering knockoff software products, the U.S. Department of Justice said on Friday.

Court documents did not identify the email companies that were victimized, though the Justice Department described the hacking spree as “one of the largest” data breaches uncovered in U.S. history.

Mar 6, 2015

Microsoft warns Windows PCs also vulnerable to “Freak” attacks

BOSTON, March 6 (Reuters) – Hundreds of millions of Windows
PC users are vulnerable to attacks exploiting the recently
uncovered “Freak” security vulnerability, which was initially
believed to only threaten mobile devices and Mac computers,
Microsoft Corp warned.

News of the vulnerability surfaced on Tuesday when a group
of nine security experts disclosed that ubiquitous Internet
encryption technology could make devices running Apple Inc’s
iOS and Mac operating systems, along with Google Inc’s
Android browser vulnerable to cyberattacks.

Mar 4, 2015

Senator Bill Nelson calls for federal probe of Lumber Liquidators

March 4 (Reuters) – U.S. Senator Bill Nelson asked three
federal agencies to investigate hardwood flooring retailer
Lumber Liquidators Holdings Inc after a report on “60
Minutes” that some of its wood flooring products had dangerous
levels of formaldehyde.

The company’s shares fell as much as 12 percent to a
two-and-a-half-year low on Wednesday.

Mar 2, 2015

Connecticut launches probe into Lenovo use of Superfish software

March 2 (Reuters) – Connecticut Attorney General George
Jepsen’s office said on Monday it has launched an investigation
into Lenovo Group Ltd’s sales of laptops preloaded
with Superfish software, which the U.S. government last month
warned made users vulnerable to cyberattacks.

The office said that Jepsen last week sent letters to
Lenovo, the world’s biggest personal computer maker, and
privately held software maker Superfish asking them to provide
information, including contracts and emails that discuss their

Feb 25, 2015

Hackers controlling millions of PCs targeted in Europol sweep

AMSTERDAM/BOSTON, Feb 25 (Reuters) – A cybercrime ring that
used 3.2 million hacked computers worldwide to steal banking
information by seizing control of servers has been disrupted by
European police and technology companies, officials said on

Europol’s European Cybercrime Centre coordinated the
operation out of its headquarters in The Hague, targeting the
so-called Ramnit botnet, a network of computers infected with

Feb 21, 2015

U.S. urges removing Superfish program from Lenovo laptops

BOSTON, Feb 20 (Reuters) – The U.S. government on Friday
advised Lenovo Group Ltd customers to remove
“Superfish,” a program pre-installed on some Lenovo laptops,
saying it makes users vulnerable to cyberattacks.

The Department of Homeland Security said in an alert that
the program makes users vulnerable to a type of cyberattack
known as SSL spoofing, in which remote attackers can read
encrypted web traffic, redirect traffic from official websites
to spoofs, and perform other attacks.

Feb 20, 2015

U.S. government urges Lenovo customers to remove Superfish software

BOSTON (Reuters) – The U.S. Department of Homeland Security on Friday advised Lenovo Group Ltd customers to remove a software program known as “Superfish,” which the agency said the world’s No. 1 PC maker started installing on machines as early as 2010.

The Department of Homeland Security said in an alert released through its National Cyber Awareness System that the software made users vulnerable to a type of cyberattack known as SSL spoofing.

Feb 11, 2015

Experts warn 2015 could be ‘Year of the Healthcare Hack’

NEW YORK/BOSTON (Reuters) – Security experts are warning healthcare and insurance companies that 2015 will be the “Year of the Healthcare Hack,” as cybercriminals are increasingly attracted to troves of personal information held by U.S. insurers and hospitals that command high prices on the underground market.

    Anthem Inc, the No. 2 U.S. health insurer, last week disclosed a massive breach of its database containing nearly 80 million records, prompting investigations by state and federal authorities. That hack followed a breach last year at hospital operator Community Health Systems, which compromised some 4.5 million records.

Feb 11, 2015

U.S. states say Anthem too slow to inform customers of breach

BOSTON, Feb 10 (Reuters) – Ten U.S. states have sent a
letter to Anthem Inc complaining that the company has
been too slow in notifying consumers that they were victims of a
massive data breach disclosed last week.

“The delay in notifying those impacted is unreasonable and
is causing unnecessary added worry to an already concerned
population of Anthem customers,” said the letter, which was sent
on Tuesday by Connecticut Attorney General George Jepsen on
behalf of Connecticut and nine other states.

Feb 10, 2015 infected by hackers in campaign to spy on visitors – researchers

BOSTON (Reuters) – The financial news site was infected by Chinese hackers with spying software that targeted specific visitors, including those at U.S. financial services and defense firms, according to two cybersecurity firms.

The hackers infected in November with software that automatically attacked visitors by exploiting security flaws in Microsoft Corp’s Internet Explorer browser and Adobe Systems Inc’s Flash software, cybersecurity firms iSight Partners Inc and Invincea Inc said on Tuesday.

    • About Jim

      "Jim works in the Reuters Boston bureau covering cyber security, hacking and technology privacy issues. He’s been with Reuters since 2005. He previously covered technology, media and biotechnology for Broadcasting & Cable, the Orange County Register and Bloomberg News out Tokyo, Taipei, San Francisco, Los Angeles and Santa Ana, California."
      Joined Reuters:
      English, Mandarin
    • More from Jim

    • Contact Jim

    • Follow Jim