Visa, MasterCard To End Swipe-And-Sign By 2015

Visa, MasterCard To End Swipe-And-Sign By 2015

Goodbye credit card signatures and hello PIN numbers. In a move that could better protect consumers from massive security breaches, major credit card companies are looking to implement a chip-and-PIN system instead of the tired and true swipe-and-sign method used across the country. [More]

Could someone lift your print and use it to gain access to your phone?

Did These Hackers Just Win $20K, Booze & A Dirty Book By Beating Apple’s Touch ID?

Someone — or, as it turns out, a number of someones — might be the proud new owner(s) of a couple books, a bottle of wine and another of bourbon and oh yeah, around $20,000 in cash after a hacker group claims to have beaten Apple’s new fingerprint scanner, Touch ID. This, just a few days after the iPhone 5S descended on the public. [More]

LivingSocial Hacked, 50 Million Names, Emails, Birthdates, Encrypted Passwords Accessed

LivingSocial, the daily deals site partially owned by Amazon, has been hacked, with 50 million customer names, emails, birth dates, and encrypted passwords accessed. An internal memo from CEO Tim O’Shaughnessy says both the database that stores customer credit card information and the database that stores merchants’ financial and banking information were not affected or accessed. They are advising users to update their passwords. [AllThingsD]

Xbox Live Bans User For Getting Hacked

After his Xbox Live account was stolen, Josh had to file a Better Business Bureau complaint in order to make MIcrosoft pay attention to him and restore his account access. After three months, he was delighted to log back in to his account, but surprised to learn that he had been banned for a “code of conduct violation.” What did his account do to get banned? It was trying to steal other accounts. Imagine that. [More]

Detect Hardware Trojans With "Singing Rings"

Detect Hardware Trojans With "Singing Rings"

Researchers have proposed a new method for detecting trojan viruses embedded into hardware chips by using voltage detectors that “sing out” in a different frequency when they’re used on a tampered circuit. [More]

FBI Arrests Man Accused Of Hacking Celebrity Emails

FBI Arrests Man Accused Of Hacking Celebrity Emails

A certain Scarlett Johansson photo you may have read about but certainly didn’t check out yourself is part of a federal investigation that resulted in the arrest of a 35-year-old Florida man who is accused of hacking into online accounts of various celebrities. [More]

Man Who Hacks Neighbor's WiFi And Tries To Frame Him For Crimes Gets 18 Years

Man Who Hacks Neighbor's WiFi And Tries To Frame Him For Crimes Gets 18 Years

Good firewalls make good neighbors, but they won’t stop a determined hacker from busting through and manipulating your cyber footprints. For proof, look at the Minnesota man convicted of hacking his neighbor’s WiFi and attempting to frame him for child pornography and other crimes will serve 18 years in prison. [More]

Website Offers Peace Of Mind About Security Of Your Email Password

Website Offers Peace Of Mind About Security Of Your Email Password

Back in my day, I had to walk five miles in the snow to make sure my password was safe, but now, what with all the hacking going on, there are easier ways to check if yours has already been compromised. Like a handy dandy website, for one. [More]

Erotic Phishing Attack Steals Thousands Of Tumblr Logins

Erotic Phishing Attack Steals Thousands Of Tumblr Logins

Thousands of logins for emo-blogging platform Tumblr have been stolen in the past week via a phishing attack that lured users to enter their credentials in exchange for the promise of erotic content. [More]

Hackers Breach Nintendo 3DS Defenses Right After Device Debuts In Japan

Hackers Breach Nintendo 3DS Defenses Right After Device Debuts In Japan

A major reason for a video game company to come out with a new device is to make it safer from attacks by modders who find ways to let the systems play unlicensed games, as well as swipe copies of legit titles. Nintendo’s honeymoon for the 3DS handheld — which was just released in Japan and comes to the U.S. in late March — is now over before it really started. [More]

Microsoft Is Happy That Smart People Are Having Fun With Kinect

Microsoft Is Happy That Smart People Are Having Fun With Kinect

Microsoft has resisted the urge to get upset over smart people playing with their new toy in a way they hadn’t intended, says the NYT. [More]

Credit Card Hacker And ID Theft Forum Overlord Sentenced To 13 Years Prison

Credit Card Hacker And ID Theft Forum Overlord Sentenced To 13 Years Prison

Max Vision, the security consultant who was first sent to prison in 2001 for messing with the Pentagon, has now been sent to 13 years in prison for “stealing nearly two million credit card numbers from banks, businesses and other hackers,” reports Wired. The FBI took a renewed interest in Vision in 2006 after he successfully made a power grab on several competing black market ID theft websites. “I’ve changed,” Vision wrote in a letter to the court, and although he faced life in prison, he was given the shorter sentence partly because he’d cooperated with the government. With good behavior he’ll be back out in 2018. [More]

28-Year-Old Pleads Guilty To Stealing Over 130 Million Credit And Debit Card Numbers

28-Year-Old Pleads Guilty To Stealing Over 130 Million Credit And Debit Card Numbers

Albert Gonzelez pleaded guilty today to “conspiracy to engage in wire fraud for his role in stealing more than 130 million credit and debit card numbers from Heartland Payment Systems,” reports Boston.com. [More]

State Job Website Has Great Opportunities For Self-Starting Identity Thieves

State Job Website Has Great Opportunities For Self-Starting Identity Thieves

CBS 5 exposed a “gaping hole” in the code of California’s state-run employment website that allows anyone who views the site to access and modify other users’ resumes and personal info simply by changing some numbers in the URL.

Founder Of FlyersRights Says Delta Hacked Her Email Account

Founder Of FlyersRights Says Delta Hacked Her Email Account

Kate Hanni, the founder of the passenger advocacy group FlyersRights.org, has filed a lawsuit against Delta Airlines in which she claims they hacked her email account and acquired personal email messages sent between her, some journalists, and a guy who was at the time working for Metron, a company hired by the FAA to investigate Delta.

Ameriprise Bans "Customer Advisor" For Posting Link To Consumerist

Ameriprise Bans "Customer Advisor" For Posting Link To Consumerist

Hey, we helped get an Ameriprise customer banned from the financial company’s consumer advisory panel! Sorry about that, Brendan.

Another Sears.com Security Hole Discovered

Another Sears.com Security Hole Discovered

That Sears website exploit we posted about a couple of weeks ago was funny, mainly because it seemed more embarrassing for Sears than a true security risk. However, an independent security researcher had also discovered a more significant issue with the site—it allowed for an unlimited number of gift card verification attempts via an external script, so a criminal could use the site as a brute force method to identify valid gift cards for Sears and Kmart.

Ameriprise Website Riddled With Security Vulnerabilities For At Least Five Months

Ameriprise Website Riddled With Security Vulnerabilities For At Least Five Months

[Note: The original headline for this post mistakenly identified Ameritrade as the subject of the post. It is actually Ameriprise Financial. I deeply regret the error.] Since March of this year, security expert Russ McRee of HolisticInfoSec.org has sent 6 messages to Ameriprise Financial warning them of easily exploitable security holes on their website. They ignored every request, while at the same time reassuring customers that “No one without the proper web browser configuration can view or modify information contained on our systems.”