OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
[Dataloss] Chinese hackers steal private data from 760 firms

From: security curmudgeon (jerichoattrition.org)
Date: Tue May 08 2012 - 12:56:27 CDT


---------- Forwarded message ----------
From: InfoSec News <alertsinfosecnews.org>

http://www.thejakartapost.com/news/2012/05/08/chinese-hackers-steal-private-data-760-firms.html

The Jakarta Post
05/08/2012

China-based hackers are reportedly targeting US-based Google Inc and Intel
Corp.

An attack hackers launched on iBahn could help them access secret e-mails,
even encrypted ones, according to a US senior intelligence official
familiar with the matter.

As many as 760 companies have had their data accessed by hackers through
iBahn, which runs broadband business and provides entertainment access for
guests of Marriott International Inc?s global network and other hotel
chains, as well as for multinational companies that hold meetings in the
hotels.

Internet security company Trustwave Corp SpiderLabs chief Nick Percoco
said what was more concerning was that hackers might have used the iBahn
system as a stepping stone to connect to companies linked to the system by
creating a ?secret backdoor? through employees who had stayed in one of
the hotel chains.

[...]

_______________________________________________
Dataloss Mailing List (datalossdatalossdb.org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://datalossdb.org/mailing_list

Supporters:

Risk Based Security (http://www.riskbasedsecurity.com/)
Risk Based Security equips organizations with security intelligence, risk
management services and on-demand security solutions to establish
customized risk-based programs to address information security and
compliance challenges.

Tenable Network Security (http://www.tenable.com/)
Tenable Network Security provides a suite of solutions which unify real-time
vulnerability, event and compliance monitoring into a single, role-based, interface
for administrators, auditors and risk managers to evaluate, communicate and
report needed information for effective decision making and systems management.