Corporate Hacks

2020 – SolarWinds

  • 06-12-2021: SolarWinds hackers have a whole bag of new tricks for mass compromise attacks [Ars Technica]

  • 25-10-2021: Micosoft says SolarWinds hackers may have breached 14 more companies. [Engadgeet]

  • 30-08-2021: Excellent write-up of the SolarWinds security breach. [Schneier] [Lawfare]

  • 12-07-2021: Microsoft discovers critical SolarWinds zero-day under active attack. [Ars Technica] [Ars Technica] [Engadget] [Schneier] [Washington Post] [The Verge]

  • 27-06-2021: SolarWinds hackers breach Microsoft support agent. [Ars Technica]

  • 25-04-2021: Russia 'likely' kept access to US networks after SolarWinds hack [Engadget]

  • 15-04-2021: US and UK claim Russia's APT29 behind SolarWinds hack. [The Register] [Ars Technica]

  • 18-02-2021: Microsoft: SolarWinds hackers stole source code for three products. [Ars Technica] [The Register] [Engadget]

  • 04-02-2021: SolarWinds patches vulnerabilities that could allow full system control. [Ars Technica]

  • 04-02-2021: Another SolarWinds Orion hack. [Schneier]

  • 03-02-2021: More SolarWinds news. [Schneier]

  • 21-01-2021: Microsoft SolarWinds analysis: attackers hid inside Windows systems by wearing skins of legit processes. [The Register]

  • 20-01-2021: SolarWinds hackers also targeted Malwarebytes. [Engadget] [Ars Technica]

  • 19-01-2021: Injecting a backdoor into SolarWinds Orion. [Schneier]

  • 12-01-2021: SolarWinds malware exfiltrated 6 months before anyone realised it was there. [The Register]

  • 12-01-2021: Kaspersky autopsies evidence on SolarWinds hack. [The Register]

  • 12-01-2021: SolarWinds malware has links to Russian-speaking hackers. [Ars Technica]

  • 08-01-2021: Russia's SolarWinds attack and software security. [Schneier]

  • 07-01-2021: Sealed US court records exposed in SolarWinds breach. [Krebs]

  • 06-01-2021: NSA and FBI say Russia was likely behind SolarWinds attack. [Ars Technica] [Engadget]

  • 05-01-2021: Latest on SVR's SolarWinds hack. [Schneier]

  • 02-01-2021: SolarWinds hack may be much worse than originally feared. [The Verge] [Engadget]

  • 31-12-2020: SolarWinds hackers accessed Microsoft source code. [Engadget] [The Verge] [The Register]

  • 28-12-2020: Russia's SolarWinds attack. [Schneier]

  • 23-12-2020: List of known SolarWinds breach victims grows, as do attack vectors. [DC Knowledge]

  • 20-12-2020: US Secretary of State: Russia 'clearly' behind SolarWinds operation. [BBC News]

  • 18-12-2020: UK assessing impact of hacking campaign. [BBC News]

  • 18-12-2020: NSA on authentication attacks. [Schneier]

  • 18-12-2020: Microsoft president calls SolarWinds hack an “act of recklessness”. [Ars Technica]

  • 18-12-2020: Microsoft confirms it found compromised SolarWinds code in its systems. [Engadget] [DC Knowledge]

  • 17-12-2020: SolarWinds hack presents a grave risk to the US. [Ars Technica] [Engadget]

  • 17-12-2020: More on the SolarWinds breach. [Schneier] [ExtremeTech] [The Verge] [Ars Technica]

  • 16-12-2020: SolarWinds’ shares drop 22 per cent, but $286m stock sold just before hack announced. [The Register]

  • 16-12-2020: FireEye discovered SolarWinds breach while probing own hack. [DC Knowledge]

  • 16-12-2020: Malicious domain in SolarWinds hack turned into ‘killswitch’. [Krebs]

  • 16-12-2020: Hack may have exposed deep US secrets; damage yet unknown. [Stuff]

  • 16-12-2020: SolarWinds FTP password leaked on GitHub in plaintext. [The Register]

  • 14-12-2020: SolarWinds hackers have a clever way to bypass MFA. [Ars Technica] [Schneier]

  • 14-12-2020: 18,000 organizations downloaded backdoor planted by Cozy Bear hackers. [Ars Technica] [The Register] [Krebs] [Graham Cluley]

  • 14-12-2020: US and UK governments hacked through backdoored SolarWinds software. [Krebs] [The Register] [DC Knowledge] [Stuff] [Schneier] [BBC News] [BBC News]

2020 – Twitter

  • 31-07-2020: Three charged in Twitter hack. [Krebs] [Schneier] [The Verge] [The Register]

  • 31-07-2020: Phone spear phishing attack helped Twitter hackers. [Graham Cluley] [BBC News]

  • 31-07-2020: Twitter says spear-phishing attack hooked its staff and led to celebrity account hijack. [The Register]

  • 27-07-2020: Over 1000 Twitter staff and contractors had access to internal tools that helped hackers hijack accounts. [Bitdefender]

  • 23-07-2020: Politician amongst those who had their DMs accessed during Twitter hack. [Graham Cluley]

  • 20-07-2020: On the Twitter hack. [Schneier] [Krebs]

  • 20-07-2020: Twitter hackers busted 2FA to access accounts and then reset user passwords. [The Register]

  • 18-07-2020: Twitter confirms 'Bitcoin' hackers copied the data of several accounts. [Engadget] [BBC News]

  • 17-07-2020: Everything we know about the Twitter Bitcoin hack. [Engadget] [The Verge]

  • 17-07-2020: Twitter says attackers targeted 130 accounts during breach. [Engadget]

  • 16-07-2020: Trump’s Twitter account has extra protections, which could be why it didn’t get hacked. [The Verge]

  • 16-07-2020: FBI opens investigation into Twitter attack over national security concerns. [The Verge] [BBC News] [Engadget]

  • 16-07-2020: Why high-profile users should be worried over the Twitter hack. [Graham Cluley]

  • 16-07-2020: Who's behind the Twitter hack? [Krebs]

  • 16-07-2020: Hackers might have paid a Twitter employee to conduct massive crypto scam. [ExtremeTech] [NZ Herald] [Schneier] [Motherboard]

  • 16-07-2020: Twitter hack -- what went wrong and why it matters. [BBC News]

  • 16-07-2020: The Twitter mega-hack -- what you need to know. [Graham Cluley]

  • 16-07-2020: Twitter reveals that its own employee tools contributed to hack. [The Verge] [Engadget] [Ars Technica]

  • 16-07-2020: Twitter hack could be a global security crisis. [The Verge]

  • 16-07-2020: Twitter shut off the ability for many people to tweet after massive hack. [The Verge] [Engadget]

  • 16-07-2020: Crypto scammers hack big Twitter accounts. [Ars Technica] [The Verge] [Engadget] [BBC News] [The Register] [ExtremeTech]

2015 – Ashley Madison

  • 26-07-2022: A retrospective on the 2015 Ashley Madison breach. [Krebs]

  • 26-04-2017: Ashley Madison blackmailers threaten to create Cheater’s Gallery exposing members who don’t pay up. [Graham Cluley] [HardOCP]

  • 29-12-2016: Five unexpected lessons from the Ashley Madison breach. [Ars Technica]

2015 – OPM

  • 23-09-2015: OPM breach included five times more stolen fingerprints. [Ars Technica] [The Register] [Engadget] [Gizmodo] [TripWire] [Stuff]

  • 17-08-2015: That massive IRS hack was way more massive than we thought. [Gizmodo] [WSJ] [The Register]

  • 23-07-2015: Obama administration decides not to blame China publicly for OPM hack. [Ars Technica]

  • 21-07-2015: How the Army screwed over targets of biggest government hack ever. [Gizmodo] [The Intercept]

  • 13-07-2015: Why the OPM hack will be a national security threat for decades to come. [Gizmodo]

  • 11-07-2015: OPM got hacked and all I got was this stupid e-mail. [Ars Technica]

  • 10-07-2015: OPM director resigns after news that hack affected 21.5 million people. [Ars Technica] [BBC News] [THG] [Gizmodo] [Graham Cluley]

  • 09-07-2015: The largest government hack ever is way bigger than we thought. [Gizmodo] [Engadget]

  • 05-07-2015: Hillary Clinton accuses China of hacking efforts. [Stuff] [Graham Cluley]

  • 01-07-2015: OPM data hack. [Schneier]

  • 29-06-2015: In wake of hack, no Federal background checks. [HardOCP] [ABC News]

  • 26-06-2015: OPM data breach: National Intelligence head looks to Beijing. [The Register] [HardOCP] [cNet]

  • 23-06-2015: Hackers may have personal data of 18 million US Government workers. [Gizmodo]

  • 22-05-2015: “EPIC” fail -- how OPM hackers tapped the mother lode of espionage data. [Ars Technica]

  • 19-06-2015: Investigators connect massive federal hack to China. [Engadget]

  • 18-06-2015: OPM’s database for sale? Nope, it came from another US .Gov. [Krebs]

  • 15-06-2015: Catching up on the OPM breach. [Krebs] [The Register]

  • 12-06-2015: Hack of government employee records discovered by product demo. [Ars Technica]

  • 12-06-2015: Background info on US spies, military stolen by hackers. [Engadget]

  • 12-06-2015: How much info did hackers steal on US spies? Try all of it. [The Register]

  • 11-06-2015: Hack on Federal database lost 4.1M social security numbers, personal info. [DailyTech] [Engadget] [Gizmodo] [HardOCP] [reCode]

  • 09-06-2015: Why the “biggest government hack ever” got past the feds. [Ars Technica]

  • 06-06-2015: Data hacked from federal government dates back to 1985 - US official. [Stuff]

  • 05-06-2015: Chinese hackers accused of two more huge security breaches. [Gizmodo]

  • 05-06-2015: Chinese hackers accused of making off with millions of US government employees' information. [Stuff] [DailyTech]

  • 05-06-2015: Hackers steal files on 4 million US govt workers. [The Register] [BBC News] [Engadget]

2014 – Sony Pictures

2014 – Home Depot

  • 27-11-2014: Home Depot hacker hosing cost a wallet-draining $43m so far. [The Register]

  • 12-11-2014: Target, Home Depot and UPS attacks: need to rethink point-of-sale security. [The Register]

  • 09-11-2014: Home Depot lost 53 million emails, blames Windows, buys execs new Macs. [DailyTech]

  • 07-11-2014: Home Depot: hackers stole 53M email addreses. [Krebs] [Gizmodo] [WSJ] [HardOCP] [Home Depot] [Engadget] [The Register]

  • 23-09-2014: Home Depot’s former security architect had history of techno-sabotage. [Ars Technica] [Graham Cluley]

  • 20-09-2014: Home Depot ignored its own cybersecurity team since 2008. [HardOCP] [The Verge] [NYT] [Ars Technica] [Gizmodo]

  • 18-09-2014: Home Depot: 56M cards impacted, malware contained. [Krebs] [DailyTech]

  • 18-09-2014: In Home Depot breach, investigation focuses on self-checkout lanes. [Krebs]

  • 08-09-2014: In wake of confirmed breach at Home Depot, banks see spike in PIN debit card fraud. [Krebs]

  • 08-09-2014: Appalling negligence: decade-old Windows XPe holes led to Home Depot hack. [DailyTech]

  • 08-09-2014: Home Depot confirms hack: as many as 60 million cards stolen. [Gizmodo] [BoingBoing] [Reuters] [BBC News]

  • 07-09-2014: Home Depot hit by same malware as Target. [Krebs] [Lifehacker] [Gizmodo]

  • 04-09-2014: Fears grow of Home Depot data breach, exposing customers’ payment details. [Graham Cluley]

  • 03-09-2014: Data: nearly all US Home Depot stores hit. [Krebs]

  • 02-09-2014: Banks: credit card breach at Home Depot. [Krebs] [BGR]

2013 – Target

  • 21-09-2015: Inside Target, days after the 2013 breach. [Krebs]

  • 06-05-2014: The Target breach, by the numbers. [Krebs]

  • 05-05-2014: Target’s CEO gets the chop, after retailer suffers massive data breach. [Graham Cluley] [DailyTech] [BGR]

  • 29-04-2014: How Target's huge hacking could finally make credit cards secure. [Wired]

  • 17-03-2014: Details of the Target credit card breach. [Schneier]

  • 13-03-2014: Target knew of data breach earlier than reported. [GottaBeMobile] [Gizmodo] [BusinessWeek] [Engadget] [Gizmodo]

  • 25-02-2014: Card backlog extends pain from Target breach. [Krebs]

  • 14-02-2014: Target warned of vulnerabilities before data breach. [WSJ]

  • 12-02-2014: Email attack on vendor set up breach at Target. [HardOCP] [Krebs]

  • 05-02-2014: Target hackers broke in via HVAC company. [Krebs] [Ars Technica] [Gizmodo] [DailyTech]

    • 06-02-2014: Company behind Target data breach exposed. [GottaBeMobile]

    • 07-02-2014: HVAC vendor confirms link to massive Target data breach. [Gizmodo]

  • 04-02-2014: Target breach went on longer than thought. [WSJ]

  • 04-02-2014: These guys battled BlackPOS at a retailer. [Krebs]

  • 03-02-2014: Target works on security-heavy credit cards, after breach. [cNet]

  • 30-01-2014: Target hack not possible without some old-school theft. [BGR]

  • 29-01-2014: New clues in Target breach. [Krebs]

  • 23-01-2014: Experts: Target hackers will be tough to find. [NZ Herald]

  • 18-01-2014: How the Target credit card data breach worked. [GottaBeMobile] [BGR]

  • 17-01-2014: Target's holiday hack apology email looks like another hack. [Gizmodo]

  • 17-01-2014: Target got hacked hard in 2005 -- here's why they let it happen again. [Wired]

  • 17-01-2014: Target data hack only the beginning of massive, sophisticated attack. [BGR]

  • 16-01-2014: Looks like Russians were behind the Target attack. [Gizmodo] [WSJ]

  • 16-01-2014: U.S. government warns merchants on methods used by Target hackers. [Reuters]

  • 16-01-2014: Target will testify before Congress over massive holiday data breach. [The Verge]

  • 15-01-2014: A first look at the Target intrusion malware. [Krebs: part 1, part 2]

  • 14-01-2014: RAM-scraping malware could have been installed on Target’s tills. [Graham Cluley]

  • 13-01-2014: Target confirms PoS malware was used in attack. [SecurityWeek]

  • 10-01-2014: Names, emails, phone numbers on up to 70 million customers stolen. [Krebs] [BGR] [Ars Technica] [Gizmodo] [re/code] [cNet] [HardOCP] [NBC News] [THG]

  • 27-12-2013: Target confirms that encrypted PINs were swiped in Black Friday hack. [Gizmodo] [The Verge] [BGR] [THG] [GottaBeMobile] [Engadget] [HardOCP] [USA Today]

  • 25-12-2013: Reuters: Target hackers got encrypted bank PINs as well. [BGR]

    • 26-12-2013: Target denial of stolen PINs. [Gizmodo]

  • 24-12-2013: Who's selling credit cards from Target? [Krebs]

  • 24-12-2013: Target warns customers of scams after massive data breach. [Fox News]

  • 23-12-2013: Target discusses breach with state attorneys. [WSJ]

  • 22-12-2013: Non-US cards used at Target fetch premium. [Krebs]

  • 20-12-2013: Cards stolen in Target breach flood underground markets. [Krebs]

  • 19-12-2013: 40 million at risk after Target card heist. [BBC News] [Lifehacker]

2013 – Adobe

  • 27-11-2013: 38m Adobe users unaware of major data breach . [IT Brief]

  • 12-11-2013: Cryptographic blunders revealed by Adobe's password leak. [Schneier]

  • 12-11-2013: How Adobe’s messy password breach can spill to sites like diapers.com. [Ars Technica]

  • 11-11-2013: Facebook warns users after Adobe breach. [Krebs] [Engadget] [BBC News]

  • 11-11-2013: Adobe user data found online after hack. [Stuff]

  • 07-11-2013: How to check if your Adobe account details were hacked. [Gizmodo] [Cynic]

  • 07-11-2013: Number of Adobe accounts hacked now up to 150 million. [PetaPixel]

  • 06-11-2013: Adobe's security breach shows why two-factor authentication is the answer. [ReadWriteWeb]

  • 06-11-2013: The worst passwords stolen in Adobe hack. [Stuff] [HardOCP] [BBC News]

  • 04-11-2013: Anatomy of a password disaster - Adobe's giant-sized cryptographic blunder. [Sophos]

  • 29-10-2013: Adobe breach impacted at least 38 million users. [Krebs] [The Register] [BBC News] [Imaging Resource] [DPR] [Gizmodo] [Reuters]

  • 17-10-2013: Hackers hit PR Newswire, data shows up alongside recently stolen Adobe code. [Ars Technica]

  • 16-10-2013: Breach at PR Newswire tied to Adobe hack. [Krebs]

  • 04-10-2013: Adobe source code and customer data stolen in sustained network hack. [Ars Technica] [TNW] [Stuff] [HardOCP] [Adobe] [Imaging Resource] [DPR]

2013 – NYT

  • 29-04-2013: Chinese cyber-spook crew back in business, say security watchers. [The Register]

  • 13-03-2013: White House asks China to stop hacking, pretty please. [Ars Technica] [NYT]

  • 01-03-2013: Sinkholes reveal more Chinese-based business and piggybacking crims. [The Register]

  • 28-02-2013: US hackers attacked military websites, says China's defence ministry. [BBC News] [ReadWriteWeb] [HardOCP] [Reuters] [BGR]

  • 22-02-2013: Why we're not in a cyberwar with China. [ReadWriteWeb]

  • 27-02-2013: Overseas hackers have been snatching more than 1TB of data per day. [Gizmodo] [The Verge]

  • 21-02-2013: More on Chinese cyberattacks. [Schneier] [Mandiant]

  • 21-02-2013: How Anonymous accidentally helped expose two Chinese hackers. [Ars Technica]

  • 20-02-2013: Security firm releases screen capture video of alleged Chinese military hackers at work. [TNW] [Gizmodo]

  • 20-02-2013: Is there nothing we can do to stop Chinese hackers? [ReadWriteWeb]

  • 20-02-2013: US cyber attacks traced to Chinese army. [Stuff] [Wired] [Gizmodo] [Gizmodo]

  • 06-02-2013: Rupert Murdoch admits the WSJ is still being hacked. [Gizmodo] [TNW]

  • 04-02-2013: Add the DoE to list of agencies nailed by hackers. [Gizmodo] [Stuff] [HardOCP] [Reuters]

    • 05-02-2013: US DoE: which bright spark just hacked us? [The Register]

  • 02-02-2013: Washington talks cybersecurity after Chinese attacks. [Politico]

  • 01-02-2013: Eric Schmidt unloads on China in new book. [WSJ] [BBC News] [The Register]

  • 01-02-2013: Washington Post also broadly infiltrated by Chinese hackers in 2012. [Krebs]

  • 01-02-2013: Symantec: don't blame us for NYT hacks. [The Register]

  • 01-02-2013: Chinese hacking of US media becoming a widespread phenomenon. [Ars Technica]

2011 – Sony PSN

  • 12-10-2011: Sony network ransacked in huge brute-force attack. [The Register] [Ars Technica] [Wired] [Engadget]

  • 08-06-2011: Attacks on Sony, others show it's open hacking season. [CNET]

  • 06-06-2011: A brief Sony password analysis. [Troy Hunt]

  • 04-06-2011: Sony hacked for what seems to be the umpteenth time. [WSJ ATD]

  • 02-06-2011: Sony hacked yet again, plaintext passwords, e-mails, DoB posted. [Ars Technica]

  • 02-06-2011: PSN fully restored in US, Europe after hacker attack. [CBS News]

  • 30-05-2011: Full PSN services, including PS Store, return this week. [PS Blog] [The Register]

  • 24-05-2011: Bringing great shame to their family: Sony hacked yet again. [DailyTech]

  • 19-05-2011: Sony's Stringer calls hacker attack 'hiccup' in company's online strategy. [Bloomberg] [BBC News]

  • 17-05-2011: Sony defends response time to hacker breach. [Reuters]

  • 17-05-2011: Sony execs: we're still investigating privacy breach, putting new security system in place. [BGR]

  • 16-05-2011: PSN coming back online. [Trusted Reviews]

  • 15-05-2011: Sony PSN back online, just not everywhere. [PCMag] [PCWorld] [DailyTech] [BGR] [PC World]

  • 15-05-2011: PSN outage the worst outage ever? [GottaBeMobile]

  • 15-05-2011: Sony network said to have been invaded by hackers using Amazon.com server. [Bloomberg]

  • 14-05-2011: Sony's PSN is back up -- will anyone be back? [WSJ ATD]

  • 14-05-2011: Sony slowly begins to bring PSN back online. [WSJ ATD]

  • 14-05-2011: Sony yet to fully secure its networks. [HardOCP] [PHL17]

  • 13-05-2011: Interview with me about the Sony hack. [Schneier]

  • 09-05-2011: Billion-dollar PSN outage may not e fully remedied until May 31. [Ars Technica]

  • 09-05-2011: Sony may have headed off planned weekend attack. [CNET News]

  • 08-05-2011: Sony's sorry saga snowballs. [The Register]

  • 07-05-2011: Sony misses promised PSN Qriocity restoration date, begs for more patience. [Engadget]

  • 06-05-2011: Sony breach could flood market with millions of cheap stolen credit cards. [The Consumerist]

  • 06-05-2011: As Sony says it's turning a corner, talk of another attack looms. [WSJ ATD]

  • 06-05-2011: Hackers claim they're about to have their way with Sony one more time. [DailyTech]

  • 06-05-2011: Hacker group Anonymous denies Sony attack. [BBC]

  • 05-05-2011: Sony CEO apologises for data breach. [WSJ ATD] [BGR]

  • 05-05-2011: Sony continues to slog from pit of shame. [The Register]

  • 05-05-2011: Exclusive: third attack against Sony planned. [CNET News] [Gizmodo]

  • 05-05-2011: Anonymous members deny community was involved in Sony breach. [DailyTech]

  • 05-05-2011: Anonymous claims it took no credit card numbers from Sony. [WSJ ATD]

  • 05-05-2011: 'Anonymous' denies involvement in Sony cyberattacks. [BGR] [Wired]

  • 05-05-2011: Anonymous: Sony is incompetent (and we don't steal credit cards). [Ars Technica]

  • 05-05-2011: Anonymous denies involvement in PSN credit card theft. [GamesBeat]

  • 04-05-2011: Sony implicates Anonymous in attach; group denies involvement. [WSJ ATD]

  • 04-05-2011: Security expert: Sony knew its software was obsolete months before PSN breach. [The Consumerist]

  • 04-05-2011: Sony calls in data Sherlocks to unpick megahack disaster. [The Register]

  • 04-05-2011: They knew for six days: PSN hack timeline. [Kotaku]

  • 04-05-2011: Sony says "Anonymous" set stage for data theft. [Reuters] [Yahoo]

  • 04-05-2011: House hearing blasts Sony's "half-hearted, half-baked" hack response. [Ars Technica] [Kotaku]

  • 04-05-2011: Sony: Anonymous provided cover for PSN attack. [Ars Technica] [The Register]

  • 04-05-2011: Sony hack probe uncovers 'Anonymous' calling card. [Wired]

  • 04-05-2011: Bombshell: Sony tells congress 77 million accounts were compromised, implicates Anonymouse. [DailyTech] [Engadget]

  • 03-05-2011: Sony says working with security firms on breach. [Reuters]

  • 03-05-2011: Sony confirms SOE security breach, 25 million accounts compromised. [BGR]

  • 02-05-2011: Sony suffered an additional security breach, 24M accounts compromised . [AnandTech]

  • 02-05-2011: Sony says 25 million more accounts hacked. [Yahoo]

  • 02-05-2011: Sony Online loses 12700 CC account numbers, 24.6 million accounts compromised. [Joystiq]

  • 02-05-2011: Sony's been hacked again; Everquest and other games are offline. [WSJ ATD]

  • 02-05-2011: Sony says PSN passwords had been put through crypto hash. [Electronista]

  • 02-05-2011: Sony attacked again, 12700 non-US CC numbers feared stolen. [Ars Technica]

  • 02-05-2011: Sony suffers another major security breach. [BGR]

  • 02-05-2011: Sony to reboot PSN in new data center. [DC Knowledge]

  • 01-05-2011: Sony gives more PSN attack details, details "Welcome Back" packages. [Ars Technica]

  • 29-04-2011: FBI investigating PSN hack; Sony looking into compensating users. [Ars Technica]

  • 28-04-2011: Sony: some PSN data encrypted, hardware moving to new location. [Ars Technica]

  • 27-04-2011: Ars readers report credit card fraud, blame Sony. [Ars Technica]

  • 27-04-2011: PlayStation Network hacked, data stolen: how badly is Sony hurt? [Ars Technica]

  • 26-04-2011: Sony admits utter PSN failure: your personal data has been stolen. [Ars Technica]

  • 25-04-2011: PSN update: Sony isn't sure your credit card data is safe. [Ars Technica]

  • 25-04-2011: PSN down due to "external intrusion," no news on fix, credit card security. [Ars Technica]

  • 09-04-2011: Anonymous plans Sony boycott on April 16. [PC Magazine]

  • 08-04-2011: Source: Anonymous attacks on Sony annoying, not much more. [Ars Technica]

  • 07-04-2011: Anonymous suspends PSN attack. [HardOCP] [Joystiq]

  • 07-04-2011: Anonymous goes after Sony, makes it personal... very personal. [Ars Technica]

2011 – RSA

  • 27-05-2021: The story of the 2011 RSA hack. [Schneier] [Wired]

  • 26-02-2013: What RSA learned from its security breach. [WSJ]

  • 22-05-2012: RSA SecurID software token cloning: a new how-to. [Ars Technica]

  • 29-03-2012: NSA's top spook blames China for RSA hack. [The Register]

  • 28-02-2012: Hacking breach made us stronger says RSA. [The Register]

  • 27-02-2012: Seven questions for RSA security head Art Coviello. [WSJ ATD]

  • 17-02-2012: Dan Kaminsky on the RSA key vulnerability. [BoingBoing] [Dan Kaminsky]

  • 24-10-2011: Who else was hit by the RSA attackers? [Krebs] [Schneier]

  • 11-10-2011: RSA: nation state double-teamed on SecurID attack. [ZDNet UK] [Ars Technica]

  • 30-08-2011: Details of the RSA hack. [Schneier]

  • 07-06-2011: Security 'tokens' take hit. [WSJ]

  • 06-06-2011: RSA finally comes clean: SecurID is compromised. [Ars Technica]

  • 28-05-2011: Lockheed Martin confirms it came under attack. [WSJ ATD] [Schneier]

    • 28-05-2011: Lockheed says thwarted "tenacious" cyber attack. [Reuters]

    • 28-05-2011: Report: major weapons makers see networks breached by hackers. [CNET]

    • 29-05-2011: US defence firm Lockheed Martin hit by cyber attack. [BBC News]

    • 29-05-2011: RSA SecurID hackers may have accessed Lockheed Martin trade secrets, cafeteria menus. [Engadget]

    • 29-05-2011: Lockeed Martin confirms it came under attack. [CNET]

    • 07-06-2011: RSA offers new SecurIDs in the wake of Lockheed Martin cyber attack. [DailyTech]

    • 07-06-2011: RSA admits SecurID tokens have been compromised, leaves big companies unprotected. [ExtremeTech]

    • 07-06-2011: RSA agrees to replace security tokens after admitting compromise. [Wired]

    • 09-06-2011: Read the NSA's advice on coping with the SecurID attacks. [WSJ ATD]

    • 10-06-2011: RSA appoints security officer amidst blistering criticism. [The Register]

  • 04-04-2011: RSA explains how attackers breached its systems. [The Register]

  • 03-04-2011: The RSA hack: how they did it. [HardOCP] [NYT]

  • 24-03-2011: RSA won't talk? Assume SecurID is broken. [The Register]

  • 21-03-2011: RSA Security, Inc hacked. [Schneier]

2011 – HBGary

  • 20-04-2011: HBGary's open letter: full of denials that don't hold water. [Ars Technica]

  • 05-04-2011: 'Paranoia meter' is HBGary's plot to find the Pentagon's next WikiLeaker. [WSJ ATD]

  • 22-03-2011: Anonymouse and ex-Anonymous hackers wage a war of identification. [Forbes]

  • 18-03-2011: Inside Anonymous' secret war room. [Gizmodo] [Gawker]

  • 17-03-2011: Congress asks to review DoD and NSA contracts with HBGary. [Wired]

  • 17-03-2011: HBGary's nemesis is a 16 year-old schoolgirl. [The Register] [Forbes]

  • 01-03-2011: Democrats push for Congressional investigation of HBGary Federal. [Ars Technica]

  • 01-03-2011: HBGary Federal CEO resigns over Anonymous hack. [The Register]

  • 28-02-2011: Anonymous vs HBGary. [Schneier]

  • 25-02-2011: HBGary and the future of the IT security industry. [Schneier] [Threat Post]

  • 25-02-2011: Anonymous vs HBGary: the aftermath. [Ars Technica]

  • 20-02-2011: Sock-puppets and HBGary. [The Register]

    • The HBGary email that should concern us all. [Daily Kos]

  • 19-02-2011: Black ops: how HBGary wrote backdoors for the government. [Ars Technica]

  • 16-02-2011: Anonymous speaks: the inside story of the HBGary attack. [Ars Technica]

  • 15-02-2011: Spy games: inside the convoluted plot to bring down WikiLeaks. [Ars Technica]

    • 10-02-2011: How one man tracked down Anonymous -- and paid a heavy price. [Ars Technica]

© Robert Larsen. All rights reserved.