HBO hack much more extensive than first reported

Share on FacebookShare on Google+Tweet about this on TwitterShare on LinkedInEmail this to someonePrint this page

The HBO hack may have been worse than the ini­tial leaks of a few unaired TV show episodes sug­gest­ed. A secu­ri­ty com­pa­ny hired by HBO to scrub search results for the hacked files from search engines says hack­ers stole “thou­sands of Home Box Office inter­nal com­pa­ny doc­u­ments.” The dis­clo­sure came as part of a take­down notice sent to Google to force the search engine to take down links to the leaked files. The notice also detailed that the hack­ers did away with “mass­es of copy­right­ed items includ­ing doc­u­ments, images, videos and sound.” Hack­ers approached media out­lets with the news that they had bro­ken into HBO’s net­works and released episodes of “Ballers,” “Inse­cure” and “Room 104” as well as the script for an upcom­ing episode of “Game of Thrones.” Also released by the hack­ers: Two episodes of “Bar­ry,” the hit-man com­e­dy star­ring Bill Had­er that is not sched­uled to air until 2018 on the net­work. The hack­ers leaked per­son­al infor­ma­tion of a senior HBO exec­u­tive, con­tain­ing access infor­ma­tion to dozens of online accounts, includ­ing online bank­ing, and per­son­al health ser­vices. Source: Vari­ety

Amazon halts sales of Blu phone on reports data being sent to China

Ama­zon has stopped sell­ing Blu smart­phones amid con­cerns that user data is being sent to third-par­ty servers in Chi­na. Cyber­se­cu­ri­ty firm Kryp­towire says many Blu smart­phone mod­els have been send­ing full text mes­sages, phone num­bers of con­tacts, and oth­er pri­vate infor­ma­tion. Blu said a “small frac­tion” of its devices were behav­ing in such a way last year, but the phones have been fixed. Source: Tech Radar

Some Anthem Medicare patients’ data may have been exposed

A data breach may have exposed per­son­al health infor­ma­tion of more than 18,000 Anthem Medicare enrollees, after one of the insurer’s health care con­sult­ing firms dis­cov­ered that one of its employ­ees had been involved in iden­ti­ty theft. Mem­bers’ Social Secu­ri­ty and Medicare iden­ti­fi­ca­tion data may have been exposed. Source: CNBC

Echo can be turned into transmitter with malware, researcher says

A hack­er could turn an Ama­zon Echo into an eaves­drop­ping micro­phone. Secu­ri­ty researcher Mark Barnes said any­one can install mal­ware that would stream audio from the hacked device. The tech­nique requires gain­ing phys­i­cal access to the Echo, and it works only on devices sold before 2017. But there’s no soft­ware fix for old­er units, and the attack can be per­formed with­out leav­ing any sign of hard­ware intru­sion. Source: Wired

Court rules suit against insurer can go ahead, after all

A class-action law­suit filed against health insur­er Care­First Blue Cross Blue Shield after a 2014 cyber attack affect­ing the per­son­al data of 1.1 mil­lion indi­vid­u­als is being revived: A fed­er­al appeals court rul­ing has over­turned a low­er court’s deci­sion to dis­miss the case. Source: Bank Info Security

Voting machines prove vulnerable to cyber attack

Hack­ers at a cyber­se­cu­ri­ty con­fer­ence hacked a slew of vot­ing machines, demon­strat­ing to researchers how easy the process can be. The con­fer­ence acquired 30 machines for hack­ers to toy with. Every one was hacked. Source: The Hill

Sheriff’s deputy sentenced for using work computer to steal identities

Palm Beach Coun­ty, Flori­da, sheriff’s deputy Frantz Felis­ma, who used his work com­put­er to steal iden­ti­ties, was sen­tenced to five years in fed­er­al prison and ordered to pay $175,000 in resti­tu­tion. He admit­ted to steal­ing dozens of dri­vers’ iden­ti­ties over an 18-month peri­od. Source: The Fort Laud­erdale Sun-Sentinel

Cyber attack takes a bite out of Oreo maker’s bottom line

Cyber attacks are hav­ing an impact on cor­po­rate earn­ings. Oreo cook­ie mak­er Mon­delez, drug­mak­er Mer­ck and oth­ers said that a “worm” attack in the last week of the sec­ond quar­ter dis­rupt­ed oper­a­tions. Mon­delez report­ed a 5 per­cent drop in quar­ter­ly sales, blam­ing ship­ping and invoic­ing delays caused by the June 27 attack of the worm Not­Petya. Mer­ck warned that Not­Petya had halt­ed pro­duc­tion of some drugs. The attack also slowed deliv­er­ies at FedEx. Source: For­tune

 Tax preparer convicted of identity theft involving children

An Ames, Iowa, tax pre­par­er was con­vict­ed of wire fraud and iden­ti­ty theft in the prepa­ra­tion of false tax returns. Lony Tap Gat false­ly list­ed his and oth­er chil­dren as depen­dents on his clients’ per­son­al income tax returns, inflat­ing the clients’ refunds. Source: The Asso­ci­at­ed Press via U.S. News

Hacked car wash could trap driver inside vehicle

Secu­ri­ty researchers from Whitescope Secu­ri­ty and QED Secure Solu­tions hacked into a car wash’s sys­tem to make it to do things that could dam­age a vehi­cle and trap its occu­pants. The hack requires an auto­mat­ic car wash that’s con­nect­ed to the inter­net. Researchers had bay doors open and close with a vehi­cle under­neath, ignor­ing sen­sors meant to pre­vent this. Hack­ers also can access the wash’s arm, which can strike the vehi­cle. Source: CNet

Cyber attacker displays nasty images on digital billboard

Swastikas and far-right images were dis­played on a dig­i­tal bill­board in Cardiff, Wales, after a hack­er gained con­trol. Cardiff con­tact­ed the com­pa­ny that owns and oper­ates the screen, and it was switched off. Source: BBC News