[pchelpers] Re: News:Hacker Steals Data on 18M Auction Customers in South Korea

• From: "Jackie MacWhirter" <jmacwhirter@xxxxxxxxx>
• To: <pchelpers@xxxxxxxxxxxxx>
• Date: Tue, 26 Feb 2008 20:57:51 -0500

Some People are very devious cruel  with no conscience, will steal or kill 
at a drop of a hat...In Toronto about 85 miles from here a woman took a 
neighbor's dog for a walk stopped at the baker's she tied him  right 
outside - she was just in there for a few min-- when she came out the dog 
was gone.  The owner was so upset he offered $15,000 well someone contacted 
the police and  he got his dog back he was a beautiful chocolate brown lab--  
here is the rest of the story -- even your dog can be subject for ransom. 
Nothing or No One is safe ....
http://news.aol.ca/article/Two-Charged-in-Torontos-15000-Dog-Napping/109408


----- Original Message ----- 
From: "John Durham" <john.modec@xxxxxxxxxx>
To: "PC-Helpers" <pchelpers@xxxxxxxxxxxxx>
Sent: Tuesday, February 26, 2008 7:23 PM
Subject: [pchelpers] News:Hacker Steals Data on 18M Auction Customers in 
South Korea


> Chinese attacker asks for ransom on data, reports say
>
>
> FEBRUARY 26, 2008 | 4:53 PM
>
>
> By Tim Wilson
> Site Editor, Dark Reading
>
> South Korea
> s largest online shopping site earlier this month was
> attacked by a Chinese hacker who made off with the user information on
> 18 million members and a large amount of financial data.
>
> According to reports on Hack in the Box and the Web Application Security
> Consortium Incident Report, Auction.co.kr has disclosed the theft of
> data from some 18 million buyers and sellers.
>
>
> The attack was launched from China's internet. After the incident,
> Auction.co.kr received a phone call offering to exchange the user
> information for money, the reports said.
>
> According to a report on Dark Visitor, a security blog site, the Chinese
> hacker did not directly attack the server. The hacker sent out bulk
> emailings to the auction staff containing “hacker procedures" that may
> have contained malware. When the staff members confirmed the emails, the
> hacker was able to gain their IDs. The hacker was then able to log into
> the Auction server using the staffer
> s ID.
>
> The WASC report categorizes the exploit as a cross-site request forgery
> attack. "The attack description is vague, but can be best described as
> session hijacking," the organization said.
>
> Auction.co.kr waited 20 hours after the attack before confirming the
> loss of information, according to the Korean site Hackbase.com. Korean
> users rebuked the Website for being too slow to act, the reports said.
>
> More here:
> http://www.darkreading.com/document.asp?doc_id=147007



-- 
-------list-services-below-----------
Regards, John Durham (list moderator) <http://modecideas.com/contact.html?sig>
Freelists login at http://www.freelists.org/cgi-bin/lsg2.cgi
List archives at http://www.freelists.org/archives/pchelpers
PC-HELPERS list subscribe/unsub at http://modecideas.com/discuss.htm?sig
Latest news live feeds at http://modecideas.com/indexhomenews.htm?sig
Good advice is like good paint- it only works if applied.

• References:
  • [pchelpers] News:Hacker Steals Data on 18M Auction Customers in South Korea
    • From: John Durham

Other related posts:

• » [pchelpers] News:Hacker Steals Data on 18M Auction Customers in South Korea
• » [pchelpers] Re: News:Hacker Steals Data on 18M Auction Customers in South Korea

• » Related posts
• » Previous by Date
• » Next by Date
• » This Month's Archive
• » Main Archive Page

• » View list details
• » Manage your subscription