In a statement on the university's website today, University of Maryland President Wallace Loh revealed a security breach resulting in hundreds of thousands of compromised social security numbers, as well names, university IDs, and dates of birth. Calling it a "sophisticated computer security attack," Loh stated all relevant parties that have been issued a university ID since 1998 are at risk.
Wurm Online is an MMORPG that was recently brought to its knees by a DDoS attack after an update, causing it to go offline. The provider has posted several updates on its website and forums, and though optimistic claims had it pegged for being back online today, that didn't pan out. As a result of it all, Wurm is seeking justice.
This afternoon Kickstarter sent a message out to users detailing a hacker attack on their network. This network attack apparently had hackers given access to email addresses, mailing addresses, phone numbers, and encrypted passwords. Most (or all) users have also received a message that suggests no further action is needed on their part - but you do need to be aware of what this all means.
Following federal agents seizing the first iteration of the online blackmarket Silk Road, the illicit store was reincarnated as the Silk Road 2. In recent times, a so-called "transaction malleability" Bitcoin protocol bug has lead to some exchanges putting the brakes on withdrawals, and that same bug has allegedly resulted in the Silk Road 2's Bitcoin reserve being swiped.
Snapchat has had a rough few months, what with the massive scraping of its users' information and such. The latest headache for the company comes in the form of a vulnerability to iPhone users in particular, which can allow someone to be targeted with a denial-of-service attack, temporarily disabling one's iPhone.
The email systems at Yahoo have been hacked this week and Yahoo has issued a warning to the public on how to make due with the situation. Starting with a bit on what the company is doing to protect users potentially affected, Yahoo goes on to issue a short statement on what users can do to protect themselves in the near future.
The Healthcare.gov website has had its fair share of troubles since launch, and one that has been persistent among them is claims of security vulnerabilities. TrustedSec's CEO David Kennedy has been vocal about these issues, though little has been done to address them. Perhaps to make a bigger point, he took advantage of the vulnerability in recent times and managed to access 70,000 records over the course of four minutes, saying, "Seventy-thousand was just one of the numbers that I was able to go up to, and I stopped after that."
Yesterday, news surfaced of an annoying and somewhat unanticipated so-called hijacking of hotel links within Google+ Local accounts by yet-unknown spammers. When clicked, the compromised links took prospective customers to a third-party book service. Whether the third-party services were responsible for the compromised accounts or another entity entirely -- someone operating under an affiliate account sees most likely, in that scenario -- also isn't yet known.
Personal banking apps make managing a checking or savings account easy, eschewing the need for a laptop or firing up a browser. Whether they keep your personal data secure is another matter, however, one that IOActive Labs Research says needs more attention. In a recent study, the research group looked into forty different so-called home banking apps from what it says are the world's top 60 most influential banks, none of which were specified by name.