fringe: Cisco Live 2010 attendee list hacked

[security curmudgeon <jericho () attrition org>]

---------- Forwarded message ----------
From: InfoSec News <alerts () infosecnews org>

http://www.networkworld.com/news/2010/070810-cisco-live-list-hacked.html

By Tim Greene
Network World
July 08, 2010

Someone hacked the list of attendees for the recent Cisco Live 2010 users' 
conference, a security breach that led Cisco to notify the customers as 
well as a broader group who have dealings with the company.

Cisco says it won't release details about where the data was stored or how 
it was breached but sometime last Thursday afternoon a vendor told Cisco 
that someone had made "an unexpected attempt to access attendee 
information through ciscolive2010.com," the event Web site.

That lead to the general notification that Cisco sent to attendees and 
others who had been invited but did not attend. According to Cisco, 
details about less than 20% of those on the list were compromised.

Cisco says the breach was closed quickly, "but not before some conference 
listings were accessed." The compromised information consisted of Cisco 
Live badge numbers, names, titles, company addresses and e-mail addresses. 
"No other information was available or accessed," according to the warning 
Cisco Live's event team sent via e-mail Thursday.

[...]
_______________________________________________
Dataloss-discuss Mailing List (dataloss-discuss () datalossdb org)
Archived at http://seclists.org/dataloss/

Get business, compliance, IT and security staff on the same page with
CREDANT Technologies: The Shortcut Guide to Understanding Data Protection
from Four Critical Perspectives. The eBook begins with considerations
important to executives and business leaders.
http://www.credant.com/campaigns/ebook-chpt-one-web.php