Related News: eBay buries its own advisory to change passwords following database hack

One new article link has been added to our Related News page. Ars Technica published an article titled eBay buries its own advisory to change passwords following database hack.

eBay officials are taking flak for burying news of the password reset issued in response to a hack on the company’s corporate network that exposed sensitive data for millions of users.

More than seven hours after eBay published an advisory that was five clicks removed from end users, the company still made no mention of the breach, said to affect 145 million customers, in e-mails, on its front page, or when users log in to their accounts. The bare-bones post disclosed a breach in February or March that allowed attackers to make off with cryptographically protected passwords. It advised users to change their login credentials. The breach also exposed customers’ names, e-mail addresses, home addresses, phone numbers, and dates of birth in a human readable format.

Source: Ars Technica

Related News: If You Used This Secure Webmail Site, the FBI Has Your Inbox

One new article link has been added to our Related News page. Wired published an article titled If You Used This Secure Webmail Site, the FBI Has Your Inbox.

While investigating a hosting company known for sheltering child porn last year the FBI incidentally seized the entire e-mail database of a popular anonymous webmail service called TorMail.

Now the FBI is tapping that vast trove of e-mail in unrelated investigations.

The bureau’s data windfall, seized from a company called Freedom Hosting, surfaced in court papers last week when prosecutors indicted a Florida man for allegedly selling counterfeit credit cards online. The filings show the FBI built its case in part by executing a search warrant on a Gmail account used by the counterfeiters, where they found that orders for forged cards were being sent to a TorMail e-mail account: “platplus@tormail.net.”

Source: Wired

Related News: Experian Sold Consumer Data to ID Theft Service

One new article link has been added to our Related News page. Krebs on Security published an article titled Experian Sold Consumer Data to ID Theft Service.

In March 2012, Court Ventures was purchased by Costa Mesa, Calif.-based Experian, one of the three major consumer credit bureaus. According to Martin, the proprietors of Superget.info had gained access to Experian’s databases by posing as a U.S.-based private investigator. In reality, Martin said, the individuals apparently responsible for running Superget.info were based in Vietnam.

Source: Krebs on Security

Related News: Unannounced use of license photos in criminal probes puts Ohio AG under fire

One new article link has been added to our Related News page. CNN published an article titled Unannounced use of license photos in criminal probes puts Ohio AG under fire.

Two months after a controversial facial recognition technology program was launched in Ohio without public notice, state Attorney General Mike DeWine conceded Monday he should have let Ohioans know that their images from driver’s licenses were being used by law enforcement in criminal investigations.

“If I had to do it over again, would we have announced it when we did it? Yeah, we would have. And I’ll take responsibility for that,” DeWine said at a news conference.

Although DeWine said he should have gone public with the program sooner, he gave no indication that the state would change or stop using the program. He did announce that an advisory board will be created to review the system’s usage and to suggest policy changes to avoid misuse of the program.

Source: CNN