CNN.com has a story up about AOL being hacked. Not exactly the first time this has happened, but the methods are interesting, at least.
An AOL spokesman claims that "We have already taken security measures to prevent this from happening again. . . ." Those measures might involve whipping and beating AOL Customer Service reps, since the hackers' ploy depended on some... unwise choices by those reps.
The hackers gained access by e-mailing a Trojan horse program to the AOL employees. The hackers seem to have specifically targeted those employees who had access to AOL's subscriber database. Those reps who ran the program opened up their systems to the hackers, which in turn (theoretically at least) opened up AOL's Customer Relations Information System. Among other things, the CRIS contains credit card data.
AOL has admitted that at least 500 screen names (user accounts) seem to have been hacked, and they also admit that credit card data may have been compromised in the attack. The Washington Post apparently found at least one person who confirmed that their credit card data had been stolen.
At some level, AOL should be proud; you know you've hit the big time when hackers write a Trojan horse program specifically for your company. Of course, I doubt that AOL sees it that way...
|TR's 2017 Christmas giveaway: eight days left and counting||4|
|Rumor: Ryzen 2 set for Q1 2018 and a Fenghuang APU breaks cover||13|
|MSI gives Radeon RX Vega cards an Air Boost||12|
|Corsair's latest SO-DIMM kit takes 32 GB of DDR4 to 4000 MT/s||4|
|Report: Intel Inside co-marketing program will get a budget cut||28|
|Gingerbread House Day Shortbread||17|
|iMac Pro details and release date come into focus||49|
|Radeon Software Adrenalin Edition: an overview||26|
|Tuesday deals: NVMe storage, a GeForce GTX 1080 Ti, and more||9|