Cyber Security Institute

§ Current Worries

Top 3 Worries

  • Regulations
  • Old Firewall Configurations
  • Security Awareness

§ Listening

For the best information

  • The underground
  • Audible
  • Executive Excellence
  • Music (to keep me sane)

§ Watching

For early warnings

  • 150 Security Websites
  • AP Newsfeeds
  • Vendors

Monday, March 04, 2013

Bank of America says hackers lifted its data from a partner

Bank of America blames a data breach on another company that revealed internal emails related to monitoring of hacktivist groups including Anonymous. A group affiliated with Anonymous that calls itself the “Anonymous Intelligence Agency: Par:AnoIA” released what it claims is 14GB of data belonging to the bank and other organizations, including Thomson Reuters, Bloomberg, and TEKsystems. Email correspondence in the data suggests that TEKsystems was a contractor working for Bank of America and charged with monitoring public activity by hacker networks targeting the bank.

In a statement, Bank of America did not confirm it was working with TEKsystems, an IT consultancy that is part of the Allegis Group. “The source of this release has confirmed that the data was not acquired by a hack but because it was stored on a misconfigured server and basically open for grabs,” the group said.

HB Gary Federal, a California security consultancy, was compromised by Anonymous in 2011 after the company had researched the real identities of some Anonymous members.

Par:AnoIA’s data dump includes a batch of more than 500 emails with brief reports on the Occupy Wall Street movement and hacking groups such as TeaMp0isoN and UGNazi.  The data also included a special file listing of four intelligence analysts who authored some of the emails, including three who work for TEKsystems and one who formerly worked for Bank of America. Par:AnoIA said its release also includes the application OneCalais, which collects unstructured information from news stories, blogs and research reports.

Link: http://www.pcworld.com/article/2029981/bank-of-america-says-hackers-lifted-its-data-from-a-partner.html

Posted on 03/04
NewsPermalink