Home Depot confirms data breach, hit by same malware as Target

Home Depot has confirmed its payment systems have been hacked at nearly 2,200 stores in US and Canada. The stealing-code used for the breach could reportedly point at a Russian connection in the case.

The US’s fourth-largest retailer announced on Monday it investigates five months of transactions now that the cyber-attack was apparent. While the company officials do not specify the possible scale of the damage done, experts believe it could turn out one of the biggest data breaches in history.

"We owe it to our customers to alert them that we now have enough evidence to confirm that a breach has indeed occurred," Chairman and Chief Executive Officer Frank Blake said in a statement. "It is important to emphasize that no customers will be responsible for fraudulent charges to their accounts."


a public service announcement from the tech side of tumblr
please read this, it’s pretty important.


with more and more high-profile hacks, we need to all take a look at our internet security. first of all, yes, you should be coming up with a new, secure password for each web service you use. it’s bothersome, but it’s worth it. secondly, and this is really the point of this post, there’s this thing called¬†two-factor verification / authentication (2FA).¬†

tumblr describes it like this:

You know how you need two keys to launch a nuclear missile? Two-factor authentication works like that. One key is your password, the other key is your cellular phone, and you need both to access your Tumblr Dashboard.

working on the premise that¬†passwords alone just aren’t secure anymore,¬†almost all major web services have introduced this feature ‚Äď but it’s turned off by default. basically, you just enter your cell phone number and from then on, whenever you want to use the service from a new device (or whenever a hacker is trying to log in to your account), you (they)¬†have to enter your password¬†andthe code that is then sent to your phone (which hackers can’t because they don’t have your phone).

two factors - password and code. simple as that. 

with more and more of our lives being put online ‚Äď from banking and shopping, through professional and personal networking, to the storage of our most valuable files in the cloud, it is just no longer “not worth the trouble”. now that you know about two-factor auth, if you are still not vigilant about your own account security across the internet, you are unfortunately contributing to a collective apathy that will almost certainly cause serious damage to businesses and individuals in the future, yourself included. this isn’t just about you - it’s about changing the landscape of internet security on the whole, so hackers don’t get the satisfaction and so financial, social and personal damages can be limited. i hope you understand the gravity of this issue. we keep uploading more and more of ourselves to the web but we just aren’t changing the locks fast enough.

this site has done a spectacular job of organizing a list of services that have implemented 2FA and links to turning it on. i strongly¬†recommend ‚Äď no, i beg you, to peruse the list for the sites you use and¬†to go ahead and activate 2FA for each of them, or if they don’t have the feature, politely tweet at them to get it set up asap.¬†don’t be lazy about this. just this once. you really don’t want something like this happening to you.

Biggest Databreaches & Cyber Attacks of 2014

Data Breach

2014 becomes the year of biggest cyber attacks & world’s giant websites were compromised due to these cyber attacks. These attacks have steal millions of records and money by data breach.

Top Data Breaches Per Year

Figure : Top Data Breaches Per Year

Biggest Databreaches and Cyber Attack occurred in 2014

1.¬†eBay Data Breach :¬†World’s biggest online retailer Ebay’s employee’s login credentials have been compromised and around 145M user’s have been affected, eBay have solve this and urge users to change their passwords.

2.¬†Michaels Stores : The POS (Point of Scale System) at¬†Michaels and Aaron Brothers stores have been compromised due to unsophisticated malware, as per company’s report 2.6 Million¬†Credit card number & expiration date information have been stolen.

3.¬†Montana Department of Public Health and Human Services :¬†Some suspicious activity found on “Montana Department of Public Health and Human Services”, around 1.3 Million people’s name, address, birth date & social credentials have been stolen.

4. Variable Annuity Life Insurance Co. : About 774273 customer data of¬†Variable Annuity Life Insurance Co. have been stolen.

5.¬†Spec‚Äôs :¬†Texas’s biggest retailer network Spec’s was compromised due to cyber attack, customer name, address, credit card credentials (Expiration date, security code, banking info) were stolen.

Source: http://bit.ly/1jtnASD

Web Dawn - Beijing's cyber war against Hong Kong

Today, a Hong Kong populist movement launches an online referendum to gather opinions against the government’s lack of progress for meaningful election. At the time of writing - merely seven hours since its start - a staggering number of 250,000 votes has been recorded and rising. At this rate, the odd is high that by the closing day on 29th the figure will mount up to a significant percentage of Hong Kong’s 7,000,000 population with which its legitimacy will stand firm.

Local political bosses and Beijing loath it. They are quick to renounce the poll, calling it unlawful and “unconstitutional”. Beijing even go a step further. At 2pm, an all-out cyber-attack was launched from several cities from across the border, targeting not just its oversea server but also anyone on its path. Some reports show that internet data flow all over Hong Kong have been reduced into a crawl, implying that the attack extends indiscriminately to any websites with .hk string to it. Rumors had it that Facebook, which went down worldwide for half an hour today, are hit as well.

Chinese, or Hong Konger - merely a day ago I won’t hesitant to point left if pressed to admit who I am. Now, my conviction shakes. If there were anyone still having doubt before that point, they will have no doubt by now. This very attack have drawn the line between which sides have been formed, and the whole people of Hong Kong will no longer have doubt on where they will stand. A cyber-offensive of that scale should exist between countries, and only between belligerent countries. By maneuvering against its own, against a specific city, against anyone there who is or is not associating with its political enemy, the PRC is asking to be treated as nothing more than a foreign aggressor, never a homeland. If Beijing believes that it could force the independent minds of Hong Kong to admit its dominance over them, it will find nothing but cohesion, identity, and defiance after the dust settles.

Just then, I read an online news item claiming that the Anonymous have expressed sympathy on this struggle. There are talks of cyber protection and “counter-offensive”, with cyber-security group Cloudflare already fighting to hold the line. I do not know how well it will do against Beijing’s military-trained specialists backing with state resources, but I do know that the fight has come and we will not leave it unanswered.

Stand up with me.


DDoS attacks are becoming more effective

DDoS Attack

According to the new Global study by BT, Daniel of Service (DDoS) attack is the most effective attack and it can put organization down for hours or for days.

As per the research report globally there are 41% organizations were affected by DDoS attack and among these 41% organization 78% were targeted twice. Millions of user data, Login credentials, banking information have been breached.

78% US organizations were affected due to this DDoS Attack. This DDoS Attacks complex, strong & hard to reveal.

As these DDoS attacks are increasing day by day it is responsibility of Website admins & webmasters to use maximum security for their website to avoid DDoS Attack.

Source: http://bit.ly/VEu7zF

1.2 Billion Account of Hosting Provider 'Namecheap' were compromised

One of the Biggest Security breach in the History

NaneCheap Hacked

1.2 billion Username and Password of hosting provider Namecheap, Inc were compromised recently. 

After Ebay, Bitly, Target and Evernote breach Namecheap, Inc is now listed as top security breaches of 2014.

Read more here : http://bit.ly/1x9au37

Insurance Will Absorb Some Costs in Home Depot’s Giant Privacy Breach
Via Google Yahoo & Bing News Search Cyber Attack
September 20, 2014 at 06:07PM

Home Depot Inc. Thursday said some 56 million payment cards were likely compromised in a cyberattack at its stores, suggesting the hacking attack at the home improvement chain was larger than last year’s unprecedented breach at Target Corp. Home Depot, … The article Insurance Will Absorb Some Costs in Home Depot’s Giant Privacy Breach appeared first on Insurance Journal .

Read more: http://ift.tt/1sBq2oq
Wall Street Admits That A Cyberattack Could Crash Our Banking System At Any Time


Wall Street Admits That A Cyberattack Could Crash Our Banking System At Any Time

Wall Street banks are getting hit by cyber attacks every single minute of every single day. It is a massive onslaught that is not highly publicized because the bankers do not want to alarm the public. But as you will see below, one big Wall Street bank is spending 250 million dollars a year just by themselves to combat this growing problem. The truth is that our financial system is not nearly as stable as most Americans think that it is. We have become more dependent on technology than ever before, and that comes with a potentially huge downside. An electromagnetic pulse weapon or an incredibly massive cyberattack could conceivably take down part or all of our banking system at any time.

Wall Street Admits That A Cyberattack Could Crash Our Banking System At Any Time

Wall Street Admits That A Cyberattack Could Crash Our Banking System At Any Time

Source: http://theeconomiccollapseblog.com

By Michael Snyder

Wall Street Admits That A Cyberattack Could Crash Our Banking System At Any Time


Wall Street banks are getting hit by cyber attacks every single minute of every single day.  It is a massive onslaught that is not highly publicized because the bankers do not want to alarm the public.  But as you will see below, one big Wall Street…

View On WordPress