Donors to Minnesota Senator Norm Coleman’s campaign reacted angrily to the news that his campaign website hosted a completely unprotected datebase that contained their names, addresses, credit card numbers, and 3 digit security codes. The breach was revealed by the site Wikileaks.org and the Minnesota Independent. Wikileaks sent an email out to the donors, warning them their information had been compromised. It appears Coleman, who is fighting with Democrat Al Franken for the states hotly contested Senate seat, was made aware of the breach in January but never made a statement nor contacted his donors. TheHill.com says it made contact with the campaign, who finally aknowledged the breach and is encouraging them to cancel their credit cards.

 

          Campaign spokesman Cullen Sheehan wrote in an email to supporters that that there was no “evidence that our database was downloaded by any unauthorized party,” but he doesn’t dispute the possibility that security has been breached. Several IT professionals interviewed by the Minnesota Independent in late January revealed they had downloaded the database, which was not password protected. This fact seems to contradict Sheehan’s report about findings by federal authorities looking into the case. They “did not find evidence that our database was downloaded by any unauthorized party.”

Um, Mr. Sheehan? Unless you gave Wikileaks.org permission to download it and post parts of it on its website, or those IT professionals,  it sounds to me like it was downloaded by several unauthorized parties. Ignorance at its best.  The good news is there have been no reports of fraudulent credit card activity linked to the breach.

It never ceases to amaze me how arrogant some hackers and spammers are. Reading about the case of Josh Holly, the person who hacked into Miley Cyrus’ MySpace account, the hacker clearly shows his youth when he argues that he can’t ever be caught. Of course, when I was 19, I too thought I was invincible. We all did. My biggest crime though, was smuggling a briefcase full of beer into my friend’s dorm room. (Unlike Holly though, I was never caught!) He was just too sure of himself and spent a little too much time bragging about his exploits, and people who are a lot smarter than he finally caught up to him. As for me and my friends, we just drank the beer and moved on with our lives.

Holly, also known as “TrainReq”, had hacked into the talented Miss Cyrus’ MySpace and Gmail accounts and stole her personal photos, but according to a recent update on the account on Wired.com, his activities weren’t just limited to cheap thrills. He was, of course, a spammer and had raked in over a hundred thousand dollars, sending out spam from celebrities’ email accounts.

Continue reading Hacker who broke into Miley Cyrus account was a spammer»

A California man has been sentenced to a year in federal prison for hacking into his former employer’s computer system and giving spammers access to the mail server.

Steven Barnes was also ordered to pay a fine of over $54,000. Prosecutors say Barnes hacked into Akimno Systems’ network, turned the mail server into a massive open relay which sent out so much spam that the company’s email service was restricted, deleted its Microsoft Exchange data base, and compromised core boot files. Barnes pleaded guilty to the charges.

Continue reading Former IT Manager Sentenced to One Year in Prison For Hacking Former Employer»