Sophisticated Attack Yields Data On IEEE Members

[security curmudgeon <jericho () attrition org>]

http://threatpost.com/en_us/blogs/sophisticated-attack-yields-data-ieee-members-033011

March 30, 2011, 11:09AM
Sophisticated Attack Yields Data On IEEE Members
by Paul Roberts

IEEE, the world's leading society for technical professionals, has warned 
some 800 members that their credit card and personal information may have 
been stolen. The FBI has been notified of the breach.

The group disclosed the November, 2010 breach in a letter to the New 
Hampshire Attorney General, dated February 24, in keeping with that 
state's data privacy law. While the source and purpose of the security 
breach aren't known, IEEE's membership of technical professionals raises 
concerns about whether group members might be the targets of sophisticated 
phishing and social engineering attacks using stolen data.

IEEE did not immediately respond to e-mail and telephone requests for 
comment.

[..]

_______________________________________________
Dataloss-discuss Mailing List (dataloss-discuss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://datalossdb.org/mailing_list

Learn encryption strategies that manage risk and shore up compliance.
Download Article 1 of CREDANT Technologies' The Essentials Series:
Endpoint Data Encryption That Actually Works
http://credant.com/campaigns/realtime2/gap-LP1/