Tag Archives: RSA Breach

One Year Of Lulz (Part I)

Update December 26: 2011 is nearly gone and hence, here it is One Year Of Lulz (Part II)

This month I am a little late for the December Cyber Attacks Timeline. In the meantime, I decided to collect on a single table the main Cyber Attacks for this unforgettable year.

read more

An E-mail Attack to Ground Zero

Easily Predictable, the 10th 9/11 anniversary turned out to be a too tempting opportunity for unscrupulous hackers and cyber pranksters. Probably the NBC News Twitter account (and its 130,000 followers) will remember this anniversary eve for a long time after, late on Friday September the 9th, the Twitter account started to tweet false reports of a plane attack on ground zero.... Read More

An Industry Wide Attack

9/9/2011: Globalsign admitted evidence of a breach to the web server hosting the www website:... Read More

Finally I Saw One!

Update: F-Secure posted in their blog the complete description on how the patient 0 was found: And here it is the infamous “2011 recruitment plan message”.... Read More

And The Winner Is…

The Pwnie Awards is an annual awards ceremony celebrating the achievements and failures of security researchers and the security community.... Read More

The Two Faces of Hacking

My colleague Massimo Biagiotti suggested me this interesting matrix from IEEE which originally indicated some of the biggest and best stories assessed along two dimensions: innovation and impact.... Read More

Application (In)Security in the Citi

Today some more details about the Citi breach were revealed and it looks like it is not connected with the RSA breach.... Read More

Citigroup Breach and RSA Breach: A Possible Connection?

[caption id="" align="alignright" width="275" caption="Image via Wikipedia"]Citigroup Center Building - New York[/caption]

Today Citigroup revealed that the company has been victim of a breach of its online banking platform, which might have exposed sensitive data belonging to about hundreds of thousands of Citi customers.... Read More

Seeds For Free

[caption id="" align="alignright" width="300" caption="Image via Wikipedia"]An RSA SecurID SID800 token without USB connector[/caption]

Another crucial episode in the affair of the RSA Breach. In a letter published yesterday by mean of the Executive Chairman Art Coviello, letter that will probably go into the annals of computer security, RSA has confirmed that information taken in March had been used as an element of an attempted broader attack on Lockheed Martin. This evidence was obtained, according to the company, on June the 2nd, and so far, the Lockeed Martin attack is the only one, among those (alleged) aimed to other contractors, which has been confirmed directly related to the use of compromised seeds.... Read More

Seeds On Sale?

[caption id="" align="alignright" width="300" caption="Image via Wikipedia"]A Lockheed Martin building in Bethesda, Maryland[/caption]

With the alleged Northrop Grumman Cyber-attack, we have experienced three attempts, unleashed in few days, to leverage the compromised RSA seeds in order to steal data from U.S. Contractors.... Read More