22. February 2013 11:38
For Immediate Release
Media Contact: Aaron Titus
(646) 863-8301 x 2
Washington, D.C.—Identity Finder has analyzed a hack by the Anonymous hacker “Par:Anoia,” claiming to have attacked a website belonging to the U.S. Department of State. Our preliminary analysis indicates that the hack appears to be legitimate, affecting roughly 200 people, and relatively low-risk.
Identity Finder’s analysis indicates that the hack contains the following information:
- 199 Email Addresses, most of which belonged to state.gov, and a few universities
- ~207 Possible Hashed Passwords. The seemingly hashed strings were unidentified
- Zero Home Addresses
- 194 names
The breached database is named “test_hrwg_careers_usa_ctc_com,” which seems to be related to http://careers.hrwg-careers.usa-ctc.com/, which has been taken offline. A cached version indicates that it is a State Department career website, and not likely tied into sensitive State Department systems. The attack appears to be a SQL Injection attack, where a hacker tricks a website into exposing the entire contents of a database.
“This appears to be a legitimate breach,” said Aaron Titus, Chief Privacy Officer at Identity Finder. “Although the total risks associated with this breach appear low, if the hashes in the breach are actually passwords, and they are cracked, and the state department employees re-use those passwords on sensitive State Department systems, those systems could be compromised.”
“We recommend that the State Department reset the passwords for all affected employees as a precaution,” said Titus.
Identity Finder’s data discovery and protection software provides companies the ability to prevent data leakage and find sensitive information. They have quickly grown to become a leader in identity protection and Data Loss Prevention (DLP) by helping millions of consumers, small businesses, and enterprises across the world. You may download the free version of Identity Finder DLP Software here: http://identityfinder.com/free
13. February 2013 02:45
Last night President Obama delivered the State of the Union Address in Washington, DC. During his speech, he said, “We know hackers steal people’s identities and infiltrate private e-mail. We know foreign countries and companies swipe our corporate secrets.”
Here’s what that part of the State of the Union Address means to the average American:
- For the first time in history, the President has acknowledged the importance of protecting sensitive stored data as a matter of national, corporate, and individual security. It’s something that Identity Finder customers have known and practiced for years.
- The FTC reported that over 10 million american’s identities were stolen last year.
- Identities and corporate trade secrets are stolen from our own computers using malware and email. It is easy to forget the treasure trove of sensitive information we each keep on our computers. One scan with Identity Finder will help you find and secure that information.
For more than a decade, Identity Finder has protected the nation’s most important intellectual and personal assets: Trade secrets and personal identities. Identity Finder is installed on millions of computers, government, and corporate servers. The Identity Finder Enterprise and Government Console provides an essential layer of security to protect and secure sensitive personal information, non-public information, and corporate trade secrets on email servers, file servers, macs, PCs, and any other device with a hard drive.
At Identity Finder, we’re encouraged that solving data loss is a national priority, and we stand ready to support the national security, corporate security, and personal security of every American.
We encourage you to take the next step to protect your most valuable intellectual assets.
Watch the YouTube Video