Fight Identity Theft » Breach

Huge Data Breach. Hackers Winning. Identity Theft Prevention www.IDTheftSecurity.com

Sat, 06 Aug 2011 04:25:12 +0000

Another major breach of credit card data effecting 4.2 million credit card holders. Learn how it happens and how to protect yourself. www.IDTheftSecurity.com

The PlayStation Network Breach: Advice for Gamers

Fri, 24 Jun 2011 04:22:00 +0000

403.WDDinc.com — Are you a PSN user? Even if you don’t own a Sony PlayStation you’ve probably heard about the hack shut down the PSN and allowed information from millions of users to be stolen. The breach of Sony’s PSN will cost the corporation upwards of $2 billions dollars, but what does the PSN hack mean for gamers? Not only has the PlayStation Network breach caused the system to be down for an extended period of time, it’s also putting users at risk for credit card fraud and identity theft. 403.WDDinc.com 403 Web Security is a full-service, secure web application development company. From web security evaluation to secure web development and remediation, our seasoned developers have secured web-based applications against hackers and security breaches. ::: 403.WDDinc.com Visit 403.wddinc.com to request a complimentary website vulnerability review.

PEOPLE’S UNITED BANK BREACH MILLS CARD BOARD BOX DUMPSTER

Sun, 01 May 2011 04:28:10 +0000

This video was filmed just 43 days after the Nov 3rd contempt hearing People’s United Bank vs James Hastings . The Good Felon was dragged into court after he exposed People’s United Bank Superior Court Judge William “The Weasel” Wenzel” and the crooked Law firm of Pullman & Comley for fraud. Google in People’s United Bank vs James Hastings Headlines Connecticut Post – People’s Bank Exposed or Extorted Ct Post 4/6/08 by Rob Varnon.. OR Google in Peoples United Bank vs. James Hastings. Headlines Holy Diver Fairfield Weekly by Chandra Niles Nov 27th Article Peoples United Bank Public Enemy No. 1 in the Fairfield Sun by Bill Bittar – also featured in the Monroe Courier and the Bridgeport News Oct 23 2008. True story. Look for the Article in the Acorn press archives

Binghamton University Security Breach Investigation

Thu, 10 Feb 2011 04:24:13 +0000

A criminal investigation is being conducted at Binghamton University, after one of WHRW’s reporters discovered an unlocked room full of social security numbers and tax forms of former students and their parents. The discovery of a security breach was announced Tuesday on air at Binghamton University’s radio stationWHRW–after one the station’s reporters discovered an unlocked and taped open storage room full of private information of students and parents. “Binders containing social security numbers left on top of filing cabinets, tax forms from the university sent out to employees that were returned to the university because of invalid addresses, and social security numbers and credit card numbers,” said WHRW’s News Director Robert Glass. Since the incident a petition has been circulating around campus, where thousands of students have already signed there names, asking for the removal of the campuses chief security information officer. “It makes me wonder how a state university who is supposed to be here to serve, is causing us a lot of stress,” said BU Student, Alex Filiaci. The news director for WHRW says the storage room was next to one of the most trafficked lecture halls on campus, and anyone could have accessed it. “To be honest the reporter is a rambunctious sort who likes to explore things, and he wanted to see what was on the other side of the door, that’s really it, said Glass.” However, BU Public Relations Director Gail Glover says, the storage room containing …

Data Breach Speaker John Sileo – Part1

Wed, 01 Dec 2010 04:23:15 +0000

Data breach speaker and Identity theft expert John Sileo discusses the 7 deadly sins of data privacy breach. Learn how your organization can avoid Data Breach Speaker John Sileo gives you the 411. www.sileo.com Technology is not the root cause of identity theft, data breach or cyber crime. We are. Too often, technology is our scapegoat, providing a convenient excuse to sit apathetically in our corner offices, unwilling to put our money where our profits are. Unwilling, in this case, to even gaze over at the enormous profit-sucking sound that is mass data theft. The deeper cause of this crisis festers in the boardrooms of corporate America. Like an overflowing river, poor privacy leadership flows inexorably downhill from the CEO, until at last, it undermines the very banks that contain it. The identity theft and data breach bottom line? Corporate boardrooms across America care about the loss of peoples personal data about as much as Ford cared about recalling the Pinto when they began exploding on rear impact. Hey, it was cheaper to fight the lawsuits from the surviving relatives than re-engineer the gas tank. And its cheaper to take a tax write-off on fraud-loss line items than to dig this weed up by the roots. We fail to see the connection between privacy breaches and larger profit hits — liability lawsuits, brand damage, customer flight, stock depreciation, loss of trust in the company, bad press, etc. Just ask TJX, who has spent well over $500 million recovering from …

Data Breach Credit Card Hackers www.IDTheftSecurity.com

Sun, 21 Nov 2010 04:29:20 +0000

www.IDTheftSecurity.com Data Breach effects thousands when information is not properly secured and technology is not at pace with security. Criminal hackers have changed their motivation to now seek fortunes that ultimately lead to Identity Theft.

Background Check Identity Theft Arkansas Data Breach

Fri, 20 Aug 2010 04:24:52 +0000

Identity theft, www.identitytheftnews.info, id theft, www.identitytheftnewsnow.info, medical identity theft, driver license identity theft, financial identity theft, criminal character identity theft, social security identity theft, identity theft attorneys, identity theft software, identity…

Protecting Your Company From an Online Data Breach

Fri, 08 Jan 2010 04:36:30 +0000

Why do data thieves attack corporate computer networks? Well, to paraphrase Willie Sutton, it’s because that’s where the data is. As I said in previously, a data breach is usually done in one of two ways.

A data thief will either employ physical means, such as dumpster diving, social engineering or a simple break-in; or via the internet. No business today can afford to be left behind technologically, meaning that in every corporate environment there are computers, networks and electronically stored information.

Electronic files are highly sought after by would-be data thieves for the wealth of personal information they contain. There are HR files, accounting information, customer and vendor lists; the list goes on and on. All of these kinds of records are full of sensitive information which can be exploited for personal gain by data thieves.

As a business owner, you are already aware of how to protect your company from a break in; however, these electronic attacks are not as well understood or protected against by the majority of companies. The alluring elements for a data thief regarding online data breaches are:

1. The thief need not be anywhere near their victim; they can even be on another continent.

2. Just about any information you would need to commit identity theft can be readily found on the web (We will not tell you what these sites are since we discourage the practice).

3. Most companies keep a large amount of sensitive information on file; much of this data is poorly secured.

4. Computers can be an easy entry point to your data, since thieves only need to find one weak point to get into your system.

Here are some of the more common computer data attack techniques used by data thieves:

1. Phishing emails – These are emails pretending to be form a legitimate company, usually asking the victim to verify personal information.

2. Spear phishing – These are emails which are sent to employees of a company purporting to be from management, asking for passwords or information about projects they may be working on.

3. Zombie computers or networks (zombies) – These are compromised computers and networks which contain software which permits data thieves access to the system. These computers may be linked there together to form what is called a botnet.

4. Botnet – Once linked together, these botnets are used to perform attacks like denial of service, pay per clicks and spam email. In many cases, the owner of the compromised systems may not know that their system is being misused this way.

5. Bogus websites – Websites which pose as legitimate sites and attempt to trick visitors into handing over personal information; this data is then used on the real site by the data thief.

6. Crackers – Programmers and other highly skilled computer experts who use their abilities to break into networks to find weaknesses to exploit.

7. Wireless network snooping – When using unprotected wireless routers, such as are often found in coffee shops, airports and some homes, hackers may be able to pry into your computer.

8. Cookie sniffing – Hackers will use cookie sniffers to examine all of the cookies you have used and will send this information (useful since people generally use the same password for many different sites) to their own systems to use this information.

9. Malicious Software – These are various types of software: hijackers, adware, Trojan horses, etc. which act against specific operating system functions, send your personal information to someone outside your system, direct you to bogus websites or any number of other malicious actions.

10. Web Page Hijackers – A small program which redirects your browser to a site other than the one you wanted to visit. This may be to a bogus website attempting to capture your personal information or an annoyance such as being redirected to a pornographic website.

11. Piggybacking Access – This is the practice of breaking into a poorly secured computer on an external network and using this access to break into another network using a legitimate connection between the two networks.

12. People Research Sites – For a fee (usually $40-$80),you can obtain personal information on nearly anyone.

13. Dictionary attack – One of the easiest ways to guess a password. A dictionary file is loaded and since no language has an unlimited number of words, this can often generate the password with relative ease.

14. Hybrid attack – A more sophisticated variant of the dictionary attack, this takes dictionary words and combines them with numbers and/or symbols in an attempt to crack a password protected system.

15. Brute force attack – A brute force attack is one in which a program systematically works through every possible combination of numbers, letters and symbols. The amount of time need to find the password all depends on the number of characters used in the password.

16. Keyloggers – A type of spyware which records every keystroke made on a computer and sends this information to a remote user. These programs are very difficult to detect with most virus and spyware scanners.

17. Network Sniffers – Applications used to capture network traffic without the knowledge of users on the network. Sniffers are helpful to hackers in finding network weaknesses; which helps them to plan other attacks on a network.

You should be aware of the risk of data breaches, but you needn’t be paranoid. There are plenty of steps you can take, such as bringing in outside IT security consultants to work with your IT department to assess your security and work to improve it. You should also make sure that all of your software is kept up to date.

Your sensitive data should be encrypted to better protect it from prying eyes. You can use security tokens in your system, such as smartcards for accessing your network and workstations. You should also make sure that each and every one of your employees is properly trained so they know what to keep an eye out for to prevent data breaches.

Dovell Bonnett is the author of “Online Identity Theft Protection For Dummies(R) – Power LogOn Edition”, founder & CEO of Access Smart and hosts IDProtectionExpert.com. He provides businesses, campuses, and mobile employees security solutions.