Worst security snafus of 2012

By , Network World |  Security

" A former head of fraud and security for digital banking at Lloyds bank, Jessica Harper, admitted to committing what amounts to millions of dollars in fraud by filing false invoices to claim payments for more than three years.

" Chinese search engine Baidu fired four employees, three of whom were under arrest, for allegedly accepting bribes to delete content on its popular online forum. The content deletion occurred on the company's online forum, Baidu Tieba, and it has become a common practice in China to pay individuals to delete controversial or negative posts.

September

" Websites of broadcaster Al Jazeera were knocked offline as its Domain Name Servers were attacked. A group called Al-Rashedon claimed responsibility, displaying a Syrian flag and large red stamp reading "Hack."

" After police in Cambodia arrested one of the founders of The Pirate Bay file-sharing website, Gottfrid Svartholm Warg, a group calling itself NullCrew began hacking into Cambodian government and commercial websites there.

" Anti-malware firm Sophos was forced to apologize to customers after a faulty antivirus software update caused false positives for certain malware, resulting in disruptions that lasted for more than a week for some customers. Sophos CEO Kris Hagerman apologized.

" A Romanian researcher discovered a data breach in an FTP server owned by the Institute of Electrical Engineers that exposed the user names and passwords of almost 100,000 members. The IEEE organization apologized, and said it fixed the problem.

" Hackers with the Antisec group leaked a million ID numbers from Apple Inc. devices, numbers they claimed to have taken from the computer of an agent with the FBI. The leaked data included the ID numbers, the device name, and a code that allows developers to push information to the devices.

" The Federal Trade Commission brought down its punitive regulatory hammer on seven rent-to-own companies on charges they used spyware on computers they rented to customers. The FTC singled out software vendor DesignerWare LLC because software it supplied for rented computers to secretly monitored renters' online activities, including user names and passwords for social-networking sites and financial institutions, medical records and photos of family members, sending the information to an email account designated by each store. The proposed FTC settlement with DesignerWare and the computer rental companies bars use of the monitoring software and prohibits use of geolocation tracking without consumer notice and consent. However, DesignerWare owner Timothy Kelly said the FTC has "grossly misunderstood" the purpose of software PC Rental Agent, which he said is intended to track down stolen computers.


Originally published on Network World |  Click here to read the original story.
Join us:
Facebook

Twitter

Pinterest

Tumblr

LinkedIn

Google+

Answers - Powered by ITworld

ITworld Answers helps you solve problems and share expertise. Ask a question or take a crack at answering the new questions below.

Join us:
Facebook

Twitter

Pinterest

Tumblr

LinkedIn

Google+

Ask a Question