Security breach reported by Internet trading site collective2.com

[kirniki <kirniki () gmail com>]

http://www.investmentnews.com/apps/pbcs.dll/article?AID=/20091230/FREE/912309990/1035/TECHNOLOGY

Users of the do-it-yourself trading site collective2.com received an
“urgent” e-mail at a few minutes past noon Wednesday notifying them
that the company's computer database had been breached by a hacker and
that all users should log in to change their passwords immediately.

That e-mail, from Collective2 LLC founder Matthew Klein, stated that
the information accessed by the hacker included names, e-mail
addresses, passwords and credit card information.

In addition, the e-mail went on to state: “We have contacted federal
and state law enforcement authorities, who we hope will track down and
prosecute the person responsible. More important: we have changed our
database security, locked down our servers and altered our website in
order to prevent similar attacks. We are also notifying the three
credit bureaus — Equifax, Experian and TransUnion — of the breach.”

[..]
_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/

Get business, compliance, IT and security staff on the same page with
CREDANT Technologies: The Shortcut Guide to Understanding Data Protection
from Four Critical Perspectives. The eBook begins with considerations
important to executives and business leaders.
http://www.credant.com/campaigns/ebook-chpt-one-web.php