This Week in Cybersecurity News
Health Insurer Anthem Hit by Hackers by Anna Wilde Mathews and Danny Yadron, Wall Street Journal
Anthem Inc., the country’s second-biggest health insurer, said hackers broke into a database containing personal information for about 80 million of its customers and employees. The breach exposed names, birthdays, addresses and Social Security numbers but doesn’t appear to involve medical information or financial details. There are no signs of the data being sold online as of February 5. Anthem does not know precisely how many people are affected but it is likely that tens of millions of records were stolen. Anthem does not know how the attackers obtained the identification information needed to access the database.
Malicious Advertisements on Major Sites Compromised Many Computers by Jeremy Kirk, IDG News Service
Attackers who have slipped malicious advertisements onto major websites over the last month have potentially compromised large numbers of computers. Between January 29 and February 2 malicious advertisements distributed by Adtech.de, adxpansion.com and Ad.directrev.com appeared on major websites including Huffington Post and the LA Weekly. The malicious advertisements redirected users through several domains before landing on pages hosting an exploit kit that scans for software vulnerabilities.
Sony Pegs Initial Cyber-Attack Losses at $35 Million by Robert Lemos, eWeek
Sony told investors during its third-quarter earnings announcement, that it paid an estimated $15 million to investigate the attack on Sony Pictures Entertainment and expects to pay another $20 million by the end of March. The estimate is much lower than other large breaches. The theft of credit-card and personal information from Target in 2013 cost the company more than $148 million and Home Depot estimated the cost of its breach at $62 million.
Dangerous IE Flaw Opens Door to Phishing Attacks by Lucian Constantin, IDG News Service
An Internet Explorer vulnerability lets attackers bypass the Same-Origin Policy, a fundamental browser security mechanism, to launch highly credible phishing attacks or hijack users’ accounts on any website. A proof-of-concept exploit provides the user a link that opens dailymail.co.uk for 7 seconds before the site’s content is replaced with a page reading “Hacked by Deusen.” The rogue page is loaded from an external domain but the browser’s address bar keeps showing www.dailymail.co.uk which means the technique can be used to build credible phishing attacks.
Target Hackers Hit Third Parking Service by Brian Krebs, Krebs on Security
Book2Park.com, an online parking reservation service for airports across the United States, appears to be the latest victim of the hacker gang that breached Target and Home Depot. Book2Park.com is the third online parking service since December 2014 to fall victim to the cybercriminal group. Credit card numbers from the breach were put up for sale on an underground forum.