Possible Mass Security Breach Involving LexisNexis and Investigative Professionals (Update 1)
Ariel Bashi of CBS News reports:
CBS News has learned of another data breach potentially compromising the personal information of thousands of people. Companies Lexis Nexis and Investigative Professionals have sent up to 40,000 letters to customers whose “sensitive and personally identifiable” information may have been viewed by individuals who should not have had access.
The United States Postal Inspection Service is investigating a data breach at both companies that resulted in sensitive information being used in a crime. Those individuals have been notified. Sources tell CBS News that the data breach is linked to a Nigerian Scam artist who used the information to incur fraudulent charges on victims’ credit cards.
I’ll update this entry as more becomes available.
Update 1: Associated Press is reporting that LexisNexis notified 32,000 people that former customers may have viewed their personal info including Social Security numbers. So far, there seem to have been 300 victims from LexisNexis and Investigative Professionals.
Very small incident, but the article includes pictures of a skimmer attached to the ATM. Do you think you could spot it?
Skimming device found near Westminster ATM
By Anthony Bowe The Denver Post Posted: 05/01/2009 04:42:14 PM MDT Updated: 05/01/2009 05:51:54 PM MDT
… The information-stealing device was found April 23 on the ground next to a First Bank ATM at West 94th Avenue and Sheridan Boulevard. The ATM was last serviced on March 22, [I find it very difficult to believe they put a month's worth of cash in this ATM Bob] but police can't determined how long the skimmer was on the ATM.
They were compliant when they were hacked. They're still compliant. Are they still hackable?
Heartland Payment Systems Returns to Visa’s List of PCI DSS Validated Service Providers
From the press release:
Following the completion of its annual Payment Card Industry Data Security Standard (PCI DSS) assessment, Heartland Payment Systems has successfully validated its compliance with PCI DSS. As such, Heartland is returning to Visa’s List of PCI DSS Validated Service Providers. According to Visa, Heartland will appear on the list - which can be found at www.visa.com/cisp — on Monday, May 4.
A long video (broken into chapters) on the evolution of “evil bots” Homework for my Computer Security class. Addresses surveillance, privacy, the TREAD Act, etc.
Daniel Suarez - Daemon: Bot-Mediated Reality
The Long Now Foundation
Willing to use the tools potential recruits use. What a concept!
Pentagon uses Facebook, Twitter to spread message
By SAGAR MEGHANI, Associated Press Writer Sagar Meghani, Associated Press Writer – Fri May 1, 7:37 am ET
FORT MONROE, Va. – You don't often hear a three-star general using the word "friend" as a verb.
Related “and there shalt be no constituency that escape-ith the politicians lies”
May 01, 2009
White House Website Adds Links to FaceBook, Twitter, MySpace
The White House homepage (scroll to the very bottom, on the right hand side) now includes links to social networking sites Facebook, Twitter, Flickr, MySpace, as well as to YouTube, Vimeo and iTunes.
I may have found those F-35 specs the Pentagon lost...
The-Manuals.com - Free Manuals For Everybody
In case you need to learn how to use a program or a tool, you might need to read some specific manual or handbook in order to be able to perform any special task.
There are many sites where you can download a number of manuals about many topics. However, most of these sites are limited in relation to the number and accuracy of the manuals they offer.
… you can find more than 5.770.000 manuals (and growing) to search for whatever you need.
… These manuals are for many systems, therefore it does not matter if you have an IPod or an I phone, a Mac or a Pc, you will have the chance to be successful in the search for your needed manual.
A Cloud for my hackers... (I have to give them something to attack, or they might come after me!
Eucalyptus.com - Cloud Computing Made Easy
This site was created with the purpose to give users all the data they might be in the look for when it comes to getting high quality and special computing services.
This service is a good way to understand everything you need to know about the Cloud Computing technological solutions.
Eucalyptus can be defined as an open-source system, which gives users the possibility to put into practice on-premise private and hybrid clouds.